r ‘ ia f ao j 


Ae i777 
A ae 


Hy We: Vi: 


The Journal of Physical Security 
Volume 10(1), 2017 


a y Ve Le we 

ao a ie f MS ‘ 
Le iy y ip 
HW 


a ee : 


A 
f d 


eT 


Ar. fi 7 

ps 4 / 

PAA ASY ef ¢ 
7 ty Ks TY | + y 7 Fy / ed) V4) 4 
uy pl Y/ y yAS ys Mf ve j pe] | 
UG Ay 9, / @: 
4 YF i, t AVG } 
. / [vA Lf ¢ 24 
; ACTER) cf f j 
; A ih y We eA 

A ON ot / 


, A Vulnerability Assessment of “Indelible” Voter’s Ink, pages 30-56 


RG Johnston, “Some Unconventional Security Metrics”, pages 82-85 


Table of Contents 
Journal of Physical Security, Volume 10(1), 2017 


Available at http://jps.rbsekurity.com 


Editor’s Comments, pages i-iv 


N Chornoboy and E Waller, “Utility of the ‘Rule of Two’ for Calculating Adversary 
Neutralization, pages 1-7 


DM Savard and DB Kennedy, ”On the Applications of Forensic Criminology”, pages 8-29 
RG Johnston, A Vulnerability Assessment of “Indelible” Voter’s Ink, pages 30-56 


A Adebayo and A Aderinto, “Outsourcing and Models of Security Services in Selected 
Institutions in Ogun State, Nigeria”, pages 57-76 


RG Johnston, “Compliance Versus Security”, pages 77-81 
RG Johnston, “Some Unconventional Security Metrics”, pages 82-85 


RG Johnston, “Common Reasoning Errors in Security”, pages 86-90 


Journal of Physical Security 10(1), i-iv (2016) 


Editor’s Comments 


Welcome to volume 10, issue 1 of the Journal of Physical Security (JPS). In addition to the 
usual editor’s rants and news about security that appear immediately below, this issue has 
papers about the following: 


¢ The “Rule of Two” for firefights 

e Security and forensic criminology 

e A vulnerability assessment of “indelible” voter’s ink used for elections in many 
developing countries 

e Security outsourcing in Nigeria 

¢ How Compliance can sometimes harm Security 

¢ Unconventional security metrics and “Marginal Analysis” 

¢ Common security reasoning errors 


All papers are anonymously peer reviewed unless otherwise noted. We are very grateful 
indeed to the reviewers who contribute their time and expertise to advance our under- 
standing of security without receiving recognition or compensation. This is the true sign of 
a professional! 


Past issues of JPS are available at http://jps.rbsekurity.com, and you can also sign up 
there to be notified by email when a new issue becomes available. 


JPS is hosted by Right Brain Sekurity (RBS) as a free public service. RBS is a small 
company devoted to physical security consulting, vulnerability assessments, and R&D. 
(http://rbsekurity.com) 


As usual, the views expressed in these papers and the editor’s comments are those of the 
author(s) and should not necessarily be ascribed to their home institution(s) or to Right 
Brain Sekurity. 


KKK K 
Enough Already! Let’s Quit Being Shocked! 
The BBC recently reported that it could spoof voice recognition biometrics and gain 


unauthorized access to a bank account. See http://www.bbc.com/news/technology- 
39965545. 


This story includes the inevitable quote from a "security expert" that, "I was shocked". 
Shocked? Really?!? Why does this quote constantly show up when security is inevitably 
shown to be fallible? 


Journal of Physical Security 10(1), i-iv (2016) 


Come on, folks! Let's finally get a few basic facts straight: 
1. All security technologies and devices can be defeated. 


2. They can usually be defeated fairly easily, especially if no serious vulnerability 
assessment was undertaken by competent, independent vulnerability assessors and 
especially when the developer, promoter, manufacturer, vendor, or end-user is in the all- 
too-common wishful thinking mode. 


3. Low tech can usually defeat high tech. 
4. Engineers don't get security. It requires a different mindset. 


5. We need to move past the "Backwards Maxim", which states that most people will 
assume everything is secure until provided strong evidence to the contrary—exactly 
backwards from a reasonable approach. 


For more examples of seemingly knowledgeable people being shocked when they should 
probably know better, see the following: 


“Avoiding Shock and Awe”, Journal of Physical Security 9(1), 26-48 (2016) 


http://www.cnbc.com/id/36601913 


http://www.cs.tufts.edu/comp/116/archive/fall2016/jwei.pdf 


https://www.cylance.com/security-testing-houses-know-the-truth 


http://www.cnn.com/TECH/computing/9909 /03 /windows.nsa.02/#2 


http://www.nbcnews.com/id/44231957/ns /business-consumer_news/t/security-flaw- 
could-expose-credit-card-data/ 


https://www.pbs.org/newshour/amp/bb/hacking-researchers-kill-a-car-engine-on-the- 
highway-to-send-a-message-to-automakers 


KK KKK 


Internet of Slings 


Ubiquity had a thoughtful article on the security of the Internet of Things (iot): 
http://ubiquity.acm.org/blog/infrastructure-disruption-internet-of-things-security/ 
These security issues are going to increasing affect physical security. 


Journal of Physical Security 10(1), i-iv (2016) 


KK KKK 


Love is What Makes a Subaru...Hackable 


New Subaru cars are reportedly vulnerable to software hacks which were quickly 
discovered. The general problem is that car companies don’t have the software people and 
vulnerability assessors they need. See http://www.bankinfosecurity.com/exclusive- 
vulnerabilities-could-unlock-brand-new-subarus-a-9970 


KK KKK 


I Guess So! 


The class valedictorian delivering a speech at the graduation ceremony for a Pennsylvania 
High School had the microphone cut on him and was ordered by the principal to get off the 
stage. This was because his speech contained criticism of the school administrators for 
suppressing student expression. One should always question authority, but often, 
authority is too arrogant or inept to listen. 


For more information, see 
https://www.washingtonpost.com/news/education/wp/2017/06/20/a-valedictorian- 
went-rogue-in-his-final-speech-his-school-tried-to-shut-him- 
down/?utm_term=.3893120057b6 


KKK K 


Big Time Crime 


The Economic Policy Institute estimates that companies rip off their employees to a tune 
of $15 billion annually by not paying legally required overtime or by misclassifying 
workers so that they don’t get minimum wage. This level of “wage theft” is more than the 
total stolen each year in the United States due to robberies, burglaries, and auto thefts 


See https://www.fastcompany.com/40420451/companies-steal-15-billion-from-their- 
employees-every-year 


KKK K 


The Highs Get Higher 


Quest Diagnostics, a drug testing company, released its annual report on the use of illicit 
drugs in the United States. The company claims that 4.2% of drug tests done for 
background checks were positive last year. This rate is the “highest” in 12 years. 


ili 


Journal of Physical Security 10(1), i-iv (2016) 


For more information, see http://www.questdiagnostics.com/home/physicians/health- 
trends /drug-testing 


KK KKK 


So That’s Why the Mail is so Slow! 


A report from the US Post Office Inspector General says postal workers are stealing 
marijuana they smell in illegally mailed packages. There is reportedly little in the way of 
safeguards to protect against such theft. 


For more information about the heavily redacted report, see 
https://www.usnews.com/news /articles/2016-11-16/postal-workers-put-marijuana-at- 
risk-of-theft-by-coworkers-audit-finds 


KK KKK 


Cat Got Your Scam? 


A Japanese cat named Snow is able to beat the old shell game. The cat knows which of 
rapidly shuffling cups hides a small ball. See 
http://www.upi.com/Odd_News/2017/03/24/Talented-cat-excels-at-cup-and-ball- 
trick/1351490380715/ 


KKK K 


Lying and the Insider Threat 


Brain researchers at University College London reported new findings on the brain and 
dishonesty. They showed that lying gets easier and lies get bolder with practice, and that 
big lies can build from minor white lies. Lying was also shown to be easier when it benefits 
another person in addition to the one telling the lie. The implication, it seems to me, is that 
the “two person rule” isn’t always a silver bullet for security. But then that rule is often 
poorly defined and poorly implemented. 


For more information, see https://www.statnews.com/2016/10/24/brain-study-lying/ 


KK KKK 


-- Roger Johnston 
Oswego, Illinois 
July 2017 


Journal of Physical Security 10(1), 1-7 (2017) 


Utility of the “Rule of Two” for Calculating Adversary Neutralization 


Nicholas Chornoboy and Edward Waller 


University of Ontario Institute of Technology 
Oshawa, Ontario, Canada 


Abstract 

The rule of two is an approximation used in simple physical security neutralization 
calculations to determine the outcome of combat between forces with dissimilar 
armaments. It is a useful approximation, however it does not generally take into account 
important factors, primarily the varying effectiveness of weapons over different 
separations. Using synthetic environment simulation of force-on-force engagements in the 
software STAGE, the validity of the rule of two was tested in mock live action exercises. 
Using a Monte-Carlo approach, we determined statistics on the victor of engagements at 
various separation distances. Separation was chosen as the variable of interest in this 
study as it was deemed to have the largest impact on the outcome outside of the weapon 
effectiveness in producing a casualty. We found that at close distances and long distances 
the rule of two was inaccurate as either pistols or rifles dominated respectively. This 
suggests that some factor to account for the distance over which the engagement takes 


place should be used even in simple approximations. 


Journal of Physical Security 10(1), 1-7 (2017) 


Introduction 

When designing physical security systems, experts must determine how effective the 
proposed system will be at stopping attacks (Blankenship, 2002). The effectiveness of a 
physical protection system can be estimated using simple calculations of the approximate 
probabilities for interruption and neutralization of an adversary. This is how likely the 
defense force is to detect and reach the adversary before they complete their mission, and 


how likely they are to win an engagement. 


One simplification used in the approximation of the probability of neutralization is the 
“rule of two” (Snell, 2013). This rule states that each improvement in level of armament, 
hand guns to semi-automatic rifles for example, is worth twice as much damage as the 
previous level. This means that, with all other factors such as training, tactics, and armour 
being equal, “x” adversaries (Red team) armed with assault rifles will have an equal chance 
of winning an engagement against “2 times x” response force members (Blue team) armed 
with pistols (Snell, 2013). Using this assumption, standard tables of engagement outcomes 


involving both sides being equally armed can be converted quickly and used to compute 


the probability of neutralization. 


The “rule of two” is widely used for this type of calculation but there is little literature on 
the validity of this approach or the conditions for using an approximation (Abdellaoui, 
2009). This paper uses the force-on-force modelling software STAGE (Presagis, 2015) to 
simulate various engagements in order to verify the rule of two and to determine in what 


circumstances it is valid and useful. 


Background 

The rule of two is used by security experts to account for differing armaments between 
opposing forces when calculating the probability of neutralization (Snell, 2013). This is 
used in conjunction with the probability of interruption to determine the overall 
probability of effectiveness, that is how often the defense force defeats a given adversary 
force (Gordan and Wyss, 2005). Probability of neutralization is often determined using a 


chart of precompiled results of live action exercises (Gardner, 1991). These are prepared 


Journal of Physical Security 10(1), 1-7 (2017) 


for identically equipped defense force and adversaries, and the rule of two is used to 
convert these charts for dissimilar armament (Snell, 2013). An example of such a chart can 
be seen in Table 1. It may be seen that along the diagonal of equal numbers, the probability 
of victory is 0.5 (50%), which means that both sides have an equal probability of winning 
an engagement. For the rule of two, when one side is armed with pistols and the other 
rifles, the side with pistols, for the purpose of comparison, can be counted as having half as 


many participants; the same holds true for comparing batons with pistols, and so on. 


Table 1 - Probability of Neutralization Chart for equal weaponry (Snell, 2013) 


oo) Number of Adversaries 
a RS Se: | ee |e 
— 6 | 1000 | 0994 | 0.960 | 0.861 | 0697 | 0.500 _ 
— 8 | 1000 | 1.000 | 0996 | 0.978 | 0.926 | 0.821 _ 
— 9 | 1000 | 1.000 | 0.999 | 0.993 | 0.968 | 0.910 _ 


2 
(3) 
2 
S 
) 
= 
® 
oO 
Sn 
fo} 
LL 
(3) 
2) 
c 
ie} 
a. 
7) 
® 
~ 
-_ 
e} 
Sn 
(3) 
2 
e 
=) 
2a 


Synthetic environment computer modelling of a force-on-force event was chosen as it 
was felt to be the closest available match for the original scenarios used to produce 
probability of neutralization charts. The STAGE software was chosen as it has robust, 
modifiable weapon models and a mission scripting language to allow easy modification of 


unit behaviour (Presagis, 2015). Some modifications had to be made to the STAGE 


Journal of Physical Security 10(1), 1-7 (2017) 


software to allow for it to be used for statistical analysis. The modifications made involved 
external code to allow a Monte-Carlo approach as well as use of the scripting engine to 
introduce more random elements such as target selection to allow STAGE to more closely 


resemble reality and to allow a more accurate Monte-Carlo simulation. 


Methodology 


The key factor chosen to be investigated was the role of distance in engagements 
between pistols and assault rifles. As both weapons’ probability of scoring a kill changes 
with respect to distance, it was expected that the rule of two would not hold for all 
distances. Weapon models found in a Sandia National Laboratories report were used as the 
basis of the model, seen in Figure 1 (Snell, 2013). Figure 1 shows the probability of 
casualty (Pc) as a function of range (separation distance), for both handguns (HG) and 


semi-automatic rifles (SAR). 


Figure 1 - Weapon models (Snell, 2013) implemented in STAGE 


Journal of Physical Security 10(1), 1-7 (2017) 


Also implemented were random target selection, as the STAGE default behavior caused 
all units to target the hostile with the next alphabetically occurring name. A final 
modification made to the stage engine was to prevent the bias that occurred when two 
opposing units fired at the same time. When this occurred, the entity on the blue teams 
shot was always resolved first. With these changes, made scenarios could be constructed 


to test the rule of two. 


Using tools within the STAGE software, force-on-force engagements were constructed. 
The opposing sides (Red and Blue teams) were equal in all other factors except for 
armament and they were then placed in a line opposite each other. Different scenarios 
were constructed with different separations between the teams varying from 10 meters to 
200 meters. The STAGE scripting engine was then used to implement the modifications 
previously mentioned (Presagis, 2015). An external code was developed that allowed the 
scenario to be run many times and extract the unit health from the simulation. This 


allowed for Monte-Carlo style simulations to be run, obtaining the relevant information. 


Results 

Scenarios were run at 10, 50, 100, 115, 125, 135, 150, 175, and 200 meter separations. 
The Red team consisted of ten individuals armed with pistols and the Blue team consisted 
of five individuals armed with rifles. The profiles for the weapons were given previously in 
figure 1. The rule of two states that the expected result would be that each team would win 
50 percent of the time (Snell, 2013); however this was not found to be the case. The results 
of the STAGE simulations can be seen in figure 2. As separation distance increases so does 
the likelihood of the Blue team (armed with rifles) winning. This is not as expected from 
the rule of two. The approximately linear relationship found predicts that the rule of two is 
valid at an engagement range of approximately 100 metres. This relationship would 
change based on the weapon models used, however the models used are taken to be 


representative of typical pistols and rifles. 


Journal of Physical Security 10(1), 1-7 (2017) 


RR 


y = 0.5728x - 9.4634 
R? = 0.9557 


Probability of Assault Rifle Victory (%) 
(op) 
jo) 


0 50 100 150 200 


Separation between sides (metres) 


Figure 2 - Blue team wins as a function of distance 


Conclusions 


The rule of two was found not to be valid over all distances of engagement. Instead, it 
was found to vary linearly as a function of distance for the representative weapon models 
used. This shows that the rule of two is useful for simple approximations. However, 
applying the linear relationship found can yield improved results when the engagement 
distance is known. This relationship can allow more accurate approximations of weapons 


effectiveness to be made when assessing physical security. 


Journal of Physical Security 10(1), 1-7 (2017) 


References 


Blankenship (2002) International Standard for Design Basis Threat, Blankenship, A. INIS, 
34(10), 2002. 


Snell (2013) Report on Project Action Sheet PPO5 Task 3 between the U.S. Department of 
Energy and the Republic of Korea Ministry of Education, Science, and Technology (MEST), 
Snell, M., Sandia National Laboratories, Albuquerque, New Mexico, SAND2013-00339, Jan. 
2013. 


Abdellaoui (2009) Comparative Analysis of Computer Generated Forces' Artificial 
Intelligence, Abdellaoui, N. et al., DRDC Ottawa, Ottawa, ON, RTO-MP-MSG-069, Oct. 2009. 


Gordan and Wyss (2005) Comparison of Two Methods to Quantify Cyber and Physical 
Security Effectiveness, Gordan, K. and Wyss, G., Sandia National Laboratories, Albuquerque, 


New Mexico, SAND2005-7177, Nov. 2005. 


Gardner (1991) Determining System Effectiveness against outsiders using ASSESS, B. H. 
Gardner et al., Nuclear Materials Management. Annual Meeting, New Orleans, LA, Vol. 20, 


1991. 


Presagis (2015) STAGE Documentation, User Guide, Presagis, Montreal, Quebec, 2015. 


Journal of Physical Security 10(1), 8-29 (2017) 


On the Applications of Forensic Criminology 


Dennis M. Savard, Ph.D. 
Saginaw Valley State University and Principal Consultant 
Forensic Criminology Consultants 


and 


Daniel B. Kennedy, Ph.D. 
Oakland University and Principal Consultant 
Forensic Criminology Associates 


Abstract 


Criminology is a multidisciplinary field of study that offers a variety of theoretical 
perspectives to explain the etiology of criminal behavior. Criminology can readily be used 
in a forensic atmosphere and coalesces with security experts to help courts of law answer 
important legal questions. Criminologists with knowledge of security can help in this 
endeavor, which identifies them as forensic criminologists. Forensic criminologists have 
applied their expertise in lawsuits concerned with negligent security, policing, and 
corrections. By providing actual cases, this paper provides examples of how criminology 


and security can be used to address each topic in a forensic context. 


Keywords: Forensic criminology, security, negligent security, policing, corrections. 


Journal of Physical Security 10(1), 8-29 (2017) 


1. Introduction 


Academic criminologists have played a vital role in the academy by shaping and 
molding the various multidisciplinary schools of thought that we now know today as 
modern criminology. From the early classical theories of crime offered by Cesare Beccaria 
and Jeremy Bentham to the early positivistic perspectives offered by Ceasare Lombroso to 
the social structural explanations of crime offered by Robert Merton, modern 
criminologists have been supplied with much theory and knowledge that they can use to 
explain the etiological qualities of criminal behavior. Indeed, the once nascent discipline of 
criminology spawned a burgeoning of new and creative areas of criminology such as 
cultural criminology, life course criminology, translational criminology, experimental 
criminology, and environmental criminology. At the same time, security has become a 
discipline that is being offered at both the undergraduate and graduate level by criminal 
justice departments across the United States and other parts of the world. Consequently, 
criminologists with an academic background and applied background have been producing 
serious empirical research dedicated to the topic of security (e.g., Nalla & Crichlow, 2014). 
In addition to their work in the academy, some criminologists have been taking an active 
role in the courts by providing their expertise in criminology and premises security liability 
for negligent security cases. Criminologists are stepping out from the classroom and 
applying the respective fields of criminology and security in a forensic context (Kennedy, 
2013). We believe that it is time to reintroduce and expand upon another subspecialty of 


criminology: forensic criminology. 


However, before a proper definition of forensic criminology can be introduced, we 
must first explore the definition of the word “forensic.” The word forensic can be traced 
back to ancient Rome where matters important to the citizenry were discussed and 
debated in the forum, hence “forensus,” meaning “of the forum” (Kennedy, 2006; Petherick, 
Turvey & Ferguson, 2009). Today, when important issues concerning adjudicative matters 
are debated, they occur in the modern-day forum, the courtroom. Therefore, forensic 
means “of the courts.” When a criminologist assists the court in answering a very 
important legal question, he or she is practicing forensic criminology. Forensic criminology 


can be defined as using the knowledge of criminology in a legal and investigative context to 


Journal of Physical Security 10(1), 8-29 (2017) 


help various courts of law answer pressing legal questions. Forensic criminologists are 
boundary spanners and scholar-practitioners who take their expertise beyond the academy 
and use it in the service of justice where it is a very effective way to get things changed for 
the better (Kram, Wasserman, & Yip, 2012). Litigation involving forensic criminologists 
has positively impacted police use-of-force practices (Fyfe, 1988), pursuits (Alpert, 1990), 
custody suicide (Kennedy & Homant, 1988), and the safety of the public through improved 
security practices (Kennedy, 2006). The aim of this article is to introduce a variety of cases 
to explain how criminology and security complement one another in terms of explaining 
the culpability or lack thereof of third parties in the areas of premises liability for negligent 


security, policing, and corrections. 


2. Security 


Forensic criminologists are often retained by attorneys involved in premises 
liability for negligent security cases where criminal incidents have occurred on mass 
private properties, such as shopping centers (Savard & Kennedy, 2014), apartment 
complexes, parking structures, and entertainment complexes. In fact, premises liability 
cases are starting to become one of the leading types of negligence claims (Kaminsky, 
2001). Due to the criminogenic environment of certain bars and nightclubs, inebriated 
patrons may fight with each other and with security personnel. For example, one of the 
authors was retained by a plaintiff's attorney to consult on a case involving a woman who 
was injured while she was a guest at a club. The woman had visited the club with a few 
female friends and happened to be standing close to a male club guest when a glass was 
thrown at him by another male. Apparently, the two male patrons bumped into each other 
and exchanged some unpleasant words. The assailant threw his glass at the other male, but 
the vessel struck the female victim in the face, causing serious and disfiguring lacerations. 
Glass from the shattered vessel also struck the male standing next to the female, causing 
several lacerations to his face as well. The perpetrator immediately left the premises but 


was ultimately convicted of an assault-related crime. 


10 


Journal of Physical Security 10(1), 8-29 (2017) 


From a social and criminological viewpoint, much is known about the nature of 
aggression in bars and nightclubs (Lang, Stockwell, Rydon, & Lockwood, 1995) and how to 
mitigate the alcohol-violence relationship in the hospitality industry (Berkley, 1997). For 
example, the amount of aggression expressed in bars is partly a function of the level of 
aversive stimuli present (the “toxic environment” theory of barroom aggression). 
Aggressive behavior is a typical response to many forms of pain, threat, or extreme 
discomfort. Bars and nightclubs can create an atmosphere that stimulates aggression as a 
function of such characteristics as loud, thumping music, heat, flashing lights, excessive 
noise, smoke, poor ventilation, slow service, crowded lines for restrooms, intoxication, lack 
of seating, poor bar design leading to foot traffic chokepoints and counterflows of foot 
traffic, dancing in congested areas, and overcrowding. Add to this mix the presence of 
young adult males who are strangers to each other, a sexually charged atmosphere, and a 
generally permissive managerial philosophy (Quigley & Leonard, 2004), and interpersonal 


violence becomes quite foreseeable. 


From a security perspective, a major criticism of the nightclub where the glass- 
throwing incident occurred was that it was far too crowded and the design of the club (one 
door, traffic counterflow, narrow passageways and chokepoints) would inevitably lead to 
people bumping into each other. Add overservice and intoxication to this mix, and violence 
is foreseeable and difficult to prevent due to the corresponding limitations on surveillance 
and response capacity of bar security personnel. CCTV footage suggested that the club was 
so crowded as to present a security and fire hazard (if the number of patrons exceeded the 
rated capacity). An employee estimated there were over 500 people in the club and that on 
some nights so many people were in the club that he could not even work (club capacity 
was 348). It was opined that the club constituted a toxic environment on the night of the 
incident. Such an environment, as described above, not only renders violence between 
patrons foreseeable, but overcrowding serves to reduce the ability of security floormen to 


monitor a bar crowd or to respond to an inchoate or active altercation. 


Another security case involved a male who was shot by one individual from a group 
of two or three young men who approached him in the parking lot of an apartment 


complex. The victim seemed to have been doing mechanical work on automobiles under 


11 


Journal of Physical Security 10(1), 8-29 (2017) 


the direction of a resident of the apartments. Both the victim and the resident were illegal 
immigrants. The victimological importance of their immigration status will be discussed in 
detail below. The victim did not know why he was approached or why he was shot. The 


assailants appeared suddenly, and the shooting happened quickly thereafter. 


In such a case, of utmost importance to the resolution of the matter is the complete 
police file, which would include the reports of the responding officers, evidence 
technicians, and the detectives working the case, in addition to security logs, security 
incident reports, police incident reports, internal documents, and depositions. It was 
explained that the disorder at the apartment complex was not attributable to any specific 
actions or inactions on the part of management but rather evolved out of a unique 
combination of broader physical and social conditions, existing well before management 


purchased the property. 


First, from a physical security perspective, this large property was virtually 
indefensible against outsider incursion because it had several public streets running 
through it over which no management company or security agency could exercise control 
(Clarke, 2004). The impracticality of effective access control was further evidenced by the 
lengthy perimeter of the property. It is well known to criminologists that the permeability 
of a property is directly related to the likelihood of crime being committed therein, other 
things being equal (Kitchen & Schneider, 2007; White, 1990). In addition to the physical 
qualities of the property that contributed to this crime, certain social structural factors are 
ultimately responsible for creating the conditions that led to the shooting of the victim. 
Local news outlets described the city where the property was located as a “sanctuary” city, 
making its environs particularly attractive to illegal immigrants seeking work in the U.S. 
Due to a phenomenon known as “chain migration,” immigrants will go to those locations 
where they have friends and relatives and where it will be possible to improve their 
economic situations without excessive concerns about being arrested (Parillo, 1986). 
Based on a review of case materials and information from property management, the 


apartment complex was a known magnet for illegal immigrants. 


12 


Journal of Physical Security 10(1), 8-29 (2017) 


The presence of illegal immigrants is related to crime in several ways. Illegal 
Immigrant populations have been described as natural victims because of their somewhat 
vulnerable social position (Doerner & Lab, 2002). They also deal in cash since they cannot 
use banks; and they are reluctant to rely on police to protect them, given their illegal 
immigrant status (Davis, Erez, & Avitabile, 2001). Illegal Immigrant populations are thus 
susceptible to being victimized by those within their own population who are not 
controlled by social bonds, and by local criminals who routinely prey upon the socially 
helpless wherever they can be found (Martinez & Valenzuela, 2006). This already 
criminogenic situation was exacerbated by the occasional raids by immigration authorities. 
These federal government actions resulted in a high turnover of Latino residents at the 
apartment complex as they reacted to such raids by quickly moving away, only to have 
others move in due to the notion of chain migration mentioned earlier. Such a high 
turnover means there is little neighborhood “collective efficacy,” where neighbors look out 
for one another and exercise some form of territorial control and concern for the property 
(Morenoff, Sampson, & Raudenbush 2001). This form of natural surveillance is the primary 
means of security in any neighborhood, yet the social dynamics of a transient population 
prevent this natural form of security from developing. The large number of vacant units 
(80 percent) made it even more unlikely that neighbor could effectively look after 
neighbor. As was indicated earlier, this was not a conventional apartment complex; 
therefore, the unique problems involved with improving the entire property must be taken 


into account when assessing the reasonableness of management decisions. 


Turning now to matters of more immediate causation, enhanced security patrols 
and video surveillance were also evaluated in terms of their connectedness to the victim’s 
injuries. The defense’s expert argued that the presence or absence of either of these 


proposed security measures was causally unrelated to the victim’s injuries. 


CCTV deployment in apartment complexes does not represent the current standard 
of care for apartment security because it cannot be demonstrated that CCTV deters violent 
crime. While there have been some successes with CCTV reported in England, research in 
the U.S. has not shown CCTV to be a deterrent (Welsh & Farrington, 2003). Even more 


specifically, CCTV has also failed to live up to expectations for security in residential areas 


13 


Journal of Physical Security 10(1), 8-29 (2017) 


(Gill, Bryan, & Allen, 2007). While CCTV can certainly be useful in documenting and 
investigating crime post event, it generally fails to deter crimes of violence. If one were to 
stop and think for a moment, virtually every robbery of a bank in the U.S. takes place on 
CCTV. Also, recall how many times one sees on regular television a violent crime which has 


taken place in front of video cameras. 


Plaintiffs’ expert recommended increased security patrol for the property. This 
issue is also more complicated than one might think. First, there was a very active patrol 
service in effect on the evening in question. A review of many pages of Security Daily 
Activity Reports documented that the security officers were doing an active, professional 
job. Yet, the shooting still occurred, even though the intensity of patrol on the property was 
six times greater at the property than for the city in which the property is located. Even 
had the security patrol force been doubled in number, proper deployment would not have 
placed the second vehicle near the original scout car on duty. Since the patrol vehicle in 
service that night was quite close to the shooting, the second vehicle would not have been 
near the shooting and would not have deterred it anyway. Also, it should be noted that 
probably only one percent of crimes actually involve an on-view incident where police 


officers observe the perpetrators just as they launch their attack (Felson, 1994). 


The fact of the matter is that overall crime rates are generally not directly affected 
by the number of police on patrol (Kelling, Pate, Dieckman, & Brown, 1974). Too many 
crimes occur indoors, or on impulse, or after perpetrators have waited for a patrol car to 
pass. While police in certain circumstances can be credited with reducing crime, the effect 
may be fleeting—or police may simply have displaced criminals to the next block (Di Tella 
& Schargrodsky, 2004). Criminologists continue to debate reasons for the recent national 
decline in violent crime. Some credit more police; others do not. One issue in measuring 
the impact is simultaneity, known as “reciprocal causation”. If a community has more 
crime, it often puts on more police, so more police often means more crime (Blumstein & 
Wallman, 2006). The point is not to deny that police officers can have a deterrent effect on 
crime. It is simply that we do not know enough about the exact causal relationship to 


conclude that, in this case, a few extra security officers on patrol at the property would 


14 


Journal of Physical Security 10(1), 8-29 (2017) 


have deterred the shooters unless these officers happened to be standing right next to the 


victim. 


This leads to a last point on causation. Would extra patrol officers, CCTV, or even a 
little more light have convinced these two (or more) criminals not to attack? We believe 
not. We didn’t know that robbery was the sole or primary motive, but we did know that 
two or more armed young men have an inflated sense of power and often act as much to 
impress each other as they do to secure a substantial financial reward from robbery 
(Erickson, 1996). It also may have been that these shooters were psychopaths, given the 
cold-blooded, apparently purposeless shooting of the victim. Psychopaths are not readily 
deterred once they have found a target because they do not experience fear as normal 
people do. Also, they are not interested in their futures in the moment, nor does the well 


being of the victim influence their behavior. They are without conscience (Hare, 1999). 


Clearly, the matter at hand was more complex than many cases involving premises 
liability for negligent security. The apartment complex was a somewhat indefensible 
property because of the public streets running through the complex, its high vacancy rate, 
and the lengthy perimeter created by a 70-acre parcel of land. This permeability problem 
was greatly exacerbated by a high tenant turnover occasioned by the large number of 
illegal immigrants attracted to and moving about the greater area. Illegal immigrants are 
particularly susceptible to crime victimization for reasons beyond the control of any 
management company. Anonymity and high turnover rendered the primary security 
benefit of any community—namely, neighbor looking after neighbor—inoperative at the 
property. Such conditions can be improved upon only over an extended time period, and 
only with the full cooperation of local authorities. The sudden and unprovoked shooting of 
the victim by one of the robbers suggests the perpetrators were unlikely to be deterred 
other than perhaps by the immediate presence of armed security personnel. Since no 
standard of care requires this level of personal protection, it was opined that there was no 
causal relationship between the reasonable deployment of security personnel and the 


injuries suffered by the victim. 


15 


Journal of Physical Security 10(1), 8-29 (2017) 


Just as security experts are called upon to address issues of negligent security at 
large properties such as apartment complexes and shopping malls, they are asked to opine 
on issues of crime foreseeability at households. Such a case involved a woman and her two 
children who were victimized in a most brutal fashion. The woman was walking 
downstairs in an apparent effort to check on her barking dog, when she first observed a 
man near her dining room window who was concealing part of his face with a bandana. As 
the man was entering the kitchen, she noticed that he was carrying a handgun. Soon 
thereafter, the man assaulted the women in an aggravated manner by striking her on the 
head with the handgun. After the assault, additional men started climbing through a 
window to the house. It appears that two different men broke into the women’s home. It 
also appears that these same men took her upstairs to her bedroom where they observed 
the woman’s son sleeping in his bed. The men forced her son in a prone position and 
pointed a gun to his head. The woman was then asked by one of the men where she kept 
her money in her house. It was at this time when the woman was taken to her daughter's 
room, subsequently restrained with electrical cords, and having a pillowcase placed over 
her head. After being held against her will, the women was placed in a prone position and 
raped.! During the rape, one of the men stated, “We're going to have some fun.” It is 
unclear if the women was raped vaginally and/or anally, and if more than one perpetrator 
raped her. It appears as if the rape of the woman was perpetrated in front of her daughter 
because the women could observe her daughter in obvious distress and crying in an overt 
manner through the pillowcase that was placed over her head. The woman could also see 
that a man was holding a gun to her daughter’s head and threating to kill her if she did not 
stop crying. Fearing for the safety and well being of her daughter, the woman desperately 
pleaded with her to stop crying. It was also reported that the daughter was raped and 


multiple items were stolen from the home. 


Criminologists and security experts are often asked to comment on crime 
foreseeability (as part of the duty element of a tort), security standards of care (as part of 
the breach of duty element), and the relationship between any alleged breach of duty and 
injuries suffered by a plaintiff (as part of the proximate cause question). The question of 


foreseeability was addressed in this particular case. With regard to crime foreseeability, 


16 


Journal of Physical Security 10(1), 8-29 (2017) 


the immediate and general location of the residence gave the impression that it was located 
in a criminogenic area. Census data for the tract (wherein the home is sited) indicated the 
tract median household income to be $27,905, and the percentage of those living below the 
poverty line was 36.17%. For the year in which the crime was committed, the United 
States had a national median household income of $49,445 and the poverty rate was 
15.1%. These comparisons indicate that data from the census tract in which the home was 
located was well below the national average for median household income and the rate at 
which people experience poverty. A “virtual tour” of the immediate surroundings of the 
home gave the impression that the area was in a depressed state. The tour revealed 
unkempt lawns and landscaping, businesses with bars on windows and doors, graffiti on 
vacant homes, and vacant homes with and without boarded up windows and doors. Data 
from the United States Census Bureau indicated that there were 403 vacant homes in the 
home’s census tract. Ignoring quality of life issues in a neighborhood can give the 
impression that the area is in a state of social disorganization and therefore encourage 


more serious offenses (Wilson & Kelling, 1982). 


Out of the 22,699 total housing units located in the city where the house was 
located, there were 3,438 vacant homes. Therefore, for every 10,000 homes in the city, 
1,515 were vacant. If we compare this to the rate of vacant homes in the state were the 
house was located, we discover that the state has 1,049 vacant homes per 10,000. Clearly, 
the city has a higher rate of vacant homes. Media accounts also substantiate that the city 
was concerned about the safety and health of the community as it relates to vacant homes. 
For example, stories indicated that there have been efforts to demolish problematic vacant 
homes. Vacant homes can serve as “crime magnets” whereby they attract drug dealers, 
drug users, prostitutes, thieves, and predatory criminals. Vacant or abandoned homes not 
only attract these types of criminal behavior but can contribute to the overall crime rate in 
an area (Spelman, 1993). The concepts of prospect, refuge, and escape (Fisher & Nasar, 
1992) can also help us understand why vacant homes can be dangerous places (Miethe, 
McCorkle, & Listwan, 2001). Vacant homes can serve as a place of concealment (refuge) 
for criminals where they can easily look (prospect) for unsuspecting victims and quickly 


flee (escape) an area after attacking a victim. The overall point is that vacant homes 


17 


Journal of Physical Security 10(1), 8-29 (2017) 


located in the city in general and specifically within the home’s neighborhood could 


contribute to its criminogenic nature. 


Crime statistics from the Federal Bureau of Investigations’ Uniform Crime Reports 
(UCR) showed that the city was by far the most dangerous city in the state in terms of 
violent victimizations when compared to cities of similar sizes. For example, if we were to 
examine cities with a similar population, the city outpaced similarly situated cities by 
having a rate of 126 violent crimes per 10,000 residents, whereas the next closest city had 
a rate of 58 violent crimes per 10,000. It was also mentioned in the Complaint that the 
woman’s home had been burglarized in the past, and an employee who installed an alarm 
system in the home informed her she needed security because “she lived in an area with a 
lot of break-ins.” If this was true, once the home suffered an initial victimization in the 
neighborhood, it could be subjected to repeat victimization.? It is also important to note 
information from the Complaint that suggests the area had a problem with burglaries. 
Based on the idea of near repeat victimization, research has found homes are at an 
increased risk of being burglarized based on their propinquity to homes that have been 
burglarized (Moreto, Piza, & Caplan, 2014). With respect to the demographics of the 
neighborhood, the general rate of vacant homes, general crime rates, presumed prior 
burglary of the home, and the presumed problems of burglary in the area, it was opined 


that one could reasonably assume that the burglary of the home was foreseeable. 


A relatively new situation that security officers are dealing with involves individuals 
with symptoms of excited delirium, mainly due to an over consumption of a drug stimulate 
(Kennedy & Savard, in press). The authors have been involved in cases where security 
officers encountered excited delirium (ExD) subjects at large regional shopping malls, 
hotels/casinos, and hospital emergency rooms. Often, claims of excessive use of force are 
brought against security companies when their security officers struggle to control a 
person experiencing ExD. Because ExD is a medical condition, it is not uncommon for a 
person to expire and his or her death is explained as being caused by positional 
asphyxiation and/or traumatic asphyxiation. However, research has challenged claims of 
death due to positional asphyxiation, and now attributes many such cases to the 


deleterious effects of ExD (Chan, Vilke, & Neuman, 1998). This is not to suggest that all ExD 


18 


Journal of Physical Security 10(1), 8-29 (2017) 


deaths involving use of force can be explained away, but rather that the causes of death 
may not be clear as it relates to positional asphyxiation. Indeed, security officers should be 
trained to recognize the signs of ExD so they can appropriately respond to the unique 


medical needs of an individual experiencing such a state. 


3. Policing 


The very nature of policing and the situations police officers deal with on a day-to- 
day basis expose them to potential civil litigation. Although use of force is a necessary 
practice which police officers must employ in certain situations and is used rarely in terms 
of the number of people who have face-to-face contact with police officers, claims of 
excessive force by citizens and subsequent civil litigation are not uncommon occurrences 
(Ross, 2006). The second author was retained in defense of a municipal police department 
being sued by a citizen who claimed an officer unjustifiably fired a weapon at him. The case 
involved a police officer on routine patrol who encountered an individual in the act of 
burglarizing a commercial establishment. During the foot chase that ensued, the police 
officer reported that the fleeing suspect reached into his back pocket and leveled what 
appeared to be a weapon at the police officer. At this point, the police officer fired one 
round at the suspect, who continued running as if the bullet had missed its target. The 
suspect was later apprehended as he hid under a truck driven by his two accomplices in 
this burglary. The suspect denied pointing anything at the police, even though a 
screwdriver was found discarded along the suspect’s escape route. Because there was 
some misunderstanding involved in the police officer’s initial reporting of these events to 
his fellow police officers, plaintiff's expert concluded that the police officer fired at the 
suspect without justification and that other police officers conspired to cover up this 


unjustified shooting. 


In the case described above, opinions were offered that the police officer acted 
reasonably when he fired the shot at the suspect. If a judge or jury believes the testimony 
of the plaintiff who admits he ran from the scene of a burglary but denies ever pointing 


what could be construed as a weapon at the officer, then this shooting may well be found 


19 


Journal of Physical Security 10(1), 8-29 (2017) 


not to be justified under Tennessee v. Garner, 471 U.S. 1 (1985). On the other hand, if the 
police officer’s version of the events is believed to be true, then his actions were 
“objectively reasonable” under Graham v. Conner, 490 U.S. 396 (1989). Use of force is often 
analyzed for reasonableness by considering whether an assailant had the ability to inflict 
serious harm on an officer, whether he also had an opportunity to do so, and whether he 
acted so as to put the officer in immediate jeopardy. According to the police officer, he 
perceived the suspect reaching for a weapon (ability), the officer was in the open without 
cover (opportunity), and the suspect pointed the weapon at him (jeopardy). Regardless of 
one’s approach to the question of “objectively reasonable” force, one must keep in mind 
that the perspective of the officer at the scene (not hindsight) is important, as is the notion 
that split-second judgments must be made under tense, uncertain, and rapidly evolving 
circumstances (Patrick & Hall, 2005). This case demonstrates how forensic criminologists 
can apply their substantive knowledge of policing to explain how a police officer was or 
was not justified in his or her use of force against a suspect. It is important that the forensic 
criminologist base his or her opinions not on anecdotal evidence, but rather on substantive 


criminological knowledge pertinent to the case at hand. 


Another case involving a law enforcement officer was concerned with claims of 
excessive use of force. Police were dispatched in response to a citizen who called 911, 
identified herself, and conveyed reports that a group of youths, one of whom reputedly was 
in possession of a gun, were walking north a street. Upon approach by the police of a group 
of youths generally fitting the description given by the caller, a male broke from the group 
and began running between the houses on the street. The officer eventually joined the 
search, spotted the male, and began a foot pursuit. Officers at the scene reported the male 
moving his hand into his waistband as if to secure a weapon. The officer was aware that his 
partner reported the male was “grabbing his waistband” and took this to mean he may 
have had a handgun tucked into his pants. Notably, the location in which the police 
responded to was known for gun violence, weapons offenses, drug activity, and gang 
activity. When the officer caught up with the male as he leaped a fence and fell into a 
residential back yard, the male wound up in a prone position and repeatedly refused 


commands to remove his hands from beneath his torso. Fearing he may be shot, the officer 


20 


Journal of Physical Security 10(1), 8-29 (2017) 


struck the male on the back of his head with his right fist as it held a flashlight. The male 
was eventually cuffed and received treatment for lacerations. A handgun was retrieved 
along the route of the male’s flight. 

An opinion was offered that explained that the officer was possessed with 
information sufficient to undertake pursuit of the male. The nature of the neighborhood 
itself and the male’s actions were sufficient to give the officer great concern for his own 
safety, the safety of his fellow officers, and for the safety of nearby residents of the 
neighborhood. These concerns placed a premium on immediate and decisive actions by the 
officer which were commensurate with proper police practices under the circumstances. 

In order to understand an officer’s actions, it is helpful to understand the nature of 
the neighborhoods in which these actions are taken. High crime rates in a neighborhood 
often translate to a higher risk of firearms assaults against police (Kuhns, Dolliver, Bent, & 
Maguire, 2016). The first step in evaluating a police action is to understand the 
neighborhood.’ The area in which the male was spotted, pursued, and apprehended was in 
a depressed census tract. The median household income for this particular census tract was 
$25,662 compared to the overall county median income of $51,667 and overall city median 
income of $39,227. About 45% of the residents of this block group were below the poverty 
level, almost double the percentage for the city. Data such as these tend to correlate with 
crime, so a higher crime rate than the city average is to be expected (Ellis, Beaver, & Wright, 
2009). This assumption proved to be true. The male was apprehended in an area that had 
one of the highest crime rates in the city. The robbery rate for this area (668 per 100,000) 
and the aggravated assault rate (1,294 per 100,000) approximated those rates for similar 
situated cities (682 and 1,256). By way of comparison, the robbery rate for the city where 
the incident occurred was 246 per 100,000, and the aggravated assault rate was 395 per 
100,000. In fact, this area reported more aggravated assaults per square mile than any 
area of the city (155). During interviews with a police department crime analyst, it was 
indicated that there was gang activity in the area and data showed that the area had the 
highest numbers of gun-related incidents in the city. Just down the street from where the 
male was apprehended was a city park, where 3 people were struck by gunfire in one year 
alone. Finally, again based on crime analyst data, the area had the second highest rate of 


drug law violations in the city. In was opined that these facts about the area made the 


21 


Journal of Physical Security 10(1), 8-29 (2017) 


report of a potential gun crime even more credible, in addition to the fact that it was 
reported by a citizen whose willingness to give her name made her concerns all the more 
important to investigate actively (Thompson & Starkman, 1973). 

We believe there are sufficient studies which establish how dangerous a police 
officer’s job can be, so we will not belabor this point.* Current criminological thinking 
identifies areas where there are drug activities, gang activities, problem buildings, property 
foreclosures, and spotty lighting as areas of high risk for assaults against police officers 
(Caplan, Marotta, Piza, & Kennedy, 2014; Marotta & Caplan, 2013). These descriptors all 
apply to the area where the officer gave pursuit to the male. Add to this the fact that 
ambushes of police officers have increased in recent years and that foot pursuits in possible 
arrest situations are inherently dangerous (Bohrer, Davis, & Garrity, 2000), and we can see 
why the officer should have been on high alert. 

What immediately prompted the officer’s use of force against the male, however, 
was his refusal to show his hands by removing them from beneath his prone body. Applied 
research has shown that a prone suspect with “hidden hands” can produce and fire a 
weapon in various directions in about one-half to three-quarters of a second (0.52 to 0.77 
seconds) (Lewinski, O’Neil, Redmann, & Thiem, 2016). The reactionary gap is such that no 
police officer could respond to this movement fast enough to save his or her life or the life 
of another officer or citizen. The male’s youth did not diminish the threat of firearm 
violence reasonably perceived by the officer. Considerable evidence indicates that youthful 
access to fire arms increases the risk of homicide, suicide, and unintentional gun injury in 


the home and in the community (Braga, 2004; Duke, Resnick, & Borowsky, 2005). 


4. Corrections 

In the context of corrections, intentional and negligence torts are of immediate 
relevance to the forensic criminologist who may consult on a variety of cases involving 
police lockups, jails, and prisons. In-custody death due to suicide is one such instance. One 
of the authors was retained by a plaintiff's attorney to consult on a case involving a male 


who hanged himself shortly after having been booked on various charges related to 


22 


Journal of Physical Security 10(1), 8-29 (2017) 


substance abuse, possession of a weapon, and resisting arrest for which he was 
incarcerated in a local municipal lockup. The subject had been stopped by police for riding 
a bicycle on a high-speed roadway. A field interview led to a violent struggle and an arrest 
at the side of the road. Subsequently, while lodged in his cell, the subject engaged in head 
banging and biting his wrists. EMS personnel were called to treat his injuries; however, 
shortly after EMS personnel left the cell, the subject used his trousers to hang himself. 
Unfortunately, no additional precautions were taken by the local police department for the 
subject’s safety even after he had obviously engaged in suicidal and/or self-injurious 


behavior. 


Risk factors of suicide (as opposed to signs) are variables which are often positively 
correlated with custody suicide. The presence of risk factors can occasion the need for a 
higher degree of custodial supervision and concern. Several risk factors were present with 
the subject upon his arrest and initial processing. The subject was suspected to be under 
the influence of alcohol. The subject was found to be in possession of crack cocaine. The 
subject resisted arrest sufficiently that the arresting officers were required to use 
considerable force in order to secure his arrest. The subject was found to be in possession 
of a straightedge razor. The subject was found to have dried blood on his hands. The 
subject admitted that he had cut himself earlier. There appeared to be blood on the 
subject’s straightedge razor. These observations would have been made within the first 
three hours of custody, the riskiest time period of an individual’s detention experience 
(Hayes, 1989). A suicide “sign” suggests an impending suicide and requires a greater alert 
condition than the presence of “risk” factors (Rudd, et al., 2006). The subject’s repeated 
head smashing and wrist gnawing were such signs. It was opined that had the “risk” 
factors described earlier been properly interpreted and/or communicated, the subject 
would have had the benefit of more frequent cell checks, greater attention to the CCTV 


monitor trained on his cell and, possibly the protection of a “suicide gown.” 


23 


Journal of Physical Security 10(1), 8-29 (2017) 


5. Conclusions 


Criminological and security expertise provided by consulting and testifying experts 
is greatly needed by the civil justice system. Criminologists and security experts have 
much to offer civil justice and criminal justice in the day-to-day world of the courts. This 
expertise is also in great demand beyond textbooks, journals, and funded research. 
Although the courtroom is not the classroom, teaching a jury can be as rewarding as 
teaching the next generation of students. Criminologists’ substantive knowledge of 
security, police pursuits, use of force, eyewitness identification, and conditions of 
confinement can contribute to the resolution of significant liability issues. Further 
applications include the study of cognitive errors during criminal investigations, additional 
causes of wrongful convictions, death penalty mitigation, the correlates of recidivism, and a 
host of other substantive areas clearly within the purview of substantive criminology 
(Morewitz & Goldstein, 2013). An emerging area for forensic criminologists involves 
cybersecurity (Addicott, 2017). Certainly, most forensic criminologists would not be 
involved with the technical aspects of cyberthreats and cybersecurity, but they certainly 
can offer opinions as it relates to insider threats, white-collar crime, employee theft, threat 
assessment, and risk assessment. Forensic psychologists, forensic psychiatrists, forensic 
anthropologists, and forensic economists make important daily contributions to civil 


justice. It is time for forensic criminology to find its proper place in the courtroom as well. 


6. Notes 


1 This type of crime could potentially be classified as what criminologists refer to as 
sexual burglary. Based on the behaviors of the perpetrator(s) described above, this 
sexual burglar could potentially be placed in the Versatile Contact Burglary type. This 
type of sexual burglar is more likely to engage in theft and violence, all of which were 
present in the victimization of the woman and her children. See, for example, Amelie 
Pedneault, Danielle A. Harris, & Raymond A. Knight, (2012). Toward a Typology of 
Sexual Burglary: Latent Class Findings, Journal of Criminal Justice, 40, 278-284. Also see 
Michael G. Vaughn, Matt DeLisi, Kevin M. Beaver, & Matthew O. Howard, (2008). 


24 


Journal of Physical Security 10(1), 8-29 (2017) 


Toward a Quantitative Typology of Burglars: A Latent Profile Analysis of Career 
Offenders, Journal of Forensic Sciences 53, 1387-1392. 


2 Repeat victimization is defined as follows: “...when the same type of criminal incident is 
experienced by the same - or virtually the same - victim or target within a specific 
period of time...” See “Analyzing Repeat Victimization,” Tool Guide No. 4 (2005), 


‘Defining Repeat Victimization,’ 3. 


3 Itis not our intention to paint the entire neighborhood as inherently criminogenic or all 
residents in the neighborhood as criminals as doing so would be an ecological fallacy. 
However, neighborhoods in certain parts of cities can be more dangerous than others 
based on their location and history, thereby giving rise to a police officer’s heightened 
awareness. We cannot equate a neighborhood’s disorganized state as being the cause 


of crime but only correlated with it. 


4 Policing is one of the most dangerous careers as ten percent of all officers are assaulted 
each year, and more than one quarter will be injured. See D. Bierie, Assault of Police, 
Crime & Delinquency (published online, 2015). From 1999 to 2009, approximately 600 
police officers were feloniously killed, and more than 700 died as the result of accidents. 
See S. Kachurik, “Police Officers Killed on Duty: A Different View,” International Journal 


of Police Science and Management, 15 (2013): 114-124. 


7. References 


Addicott, J. F. (2017). Enhancing Cybersecurity in the Private Sector by means of civil 
liability lawsuits-the Connie Francis effect. University of Richmond Law Review, 51, 857- 
895. 

Alpert, G. P., & Dunham, R. G. (1990). Police pursuit driving: Controlling responses to 


emergency situations. Westport, CT: Greenwood Press. 


25 


Journal of Physical Security 10(1), 8-29 (2017) 


Braga, A. A. (2004). Gun violence among serious young offenders. Washington, DC: US 
Department of Justice, Office of Community Oriented Policing Services. 

Berkley, B. J. (1997). Preventing customer altercations in nightclubs. The Cornell Hotel and 
Restaurant Administration Quarterly, 38(2), 82-94. 

Blumstein, A., & Wallman, J. (2006). The crime drop and beyond. Annu. Rev. Law Soc. Sci., 2, 
125-146. 

Bohrer, S., Davis, E. F., & Garrity, T. J. (2000). Establishing a foot pursuit policy: Running 
into danger. FBI Law Enforcement Bulletin, 69(5), 10-15. 

Caplan, J., Marotta, P., L. Piza, E., & W. Kennedy, L. (2014). Spatial risk factors of felonious 
battery to police officers. Policing: An International Journal of Police Strategies & 
Management, 37(4), 823-838. 

Chan, T. C., Vilke, G. M., & Neuman, T. (1998). Reexamination of custody restraint position 
and positional asphyxia. The American journal of forensic medicine and pathology, 19(3), 
201-205. 

Clarke, R. V. G. (2004). Closing streets and alleys to reduce crime: should you go down this 
road?. US Department of Justice, Office of Community Oriented Policing Services. 

Davis, R. C., Erez, E., & Avitabile, N. (2001). Access to justice for immigrants who are 
victimized: The perspectives of police and prosecutors. Criminal Justice Policy Review, 
12(3), 183-196. 

Di Tella, R., & Schargrodsky, E. (2004). Do police reduce crime? Estimates using the 
allocation of police forces after a terrorist attack. The American Economic Review, 94(1), 
115-133. 

Doerner, W. G., & Steven, P. Lab 2002 Victimology. Cincinnati, Ohio: Anderson. 

Duke, N., Resnick, M. D., & Borowsky, I. W. (2005). Adolescent firearm violence: Position 
paper of the Society for Adolescent Medicine. Journal of Adolescent Health, 37(2), 171- 
174. 

Ellis, L., Beaver, K. M., & Wright, J. (2009). Handbook of crime correlates. Academic Press. 

Erickson, R. J. (1996). Armed robbers and their crimes. Seattle, WA: Athena Research 
Corporation. 

Felson, M. (1994). Crime and everyday life: Insight and implications for society. Thousand 
Oaks, CA: Pine. 


26 


Journal of Physical Security 10(1), 8-29 (2017) 


Fisher, B. S., & Nasar, J. L. (1992). Fear of crime in relation to three exterior site features: 
Prospect, refuge, and escape. Environment and Behavior, 24(1), 35-65. 

Fyfe, J. J. (1988). Police use of deadly force: Research and reform. Justice quarterly, 5(2), 
165-205. 

Gill, M., Bryan, J., & Allen, J. (2007). Public Perceptions of CCTV in Residential Areas: “It Is 
Not As Good As We Thought It Would Be.”. International Criminal Justice Review, 17(4), 
304-324. 

Hare, R. D. (1999). Without conscience: The disturbing world of the psychopaths among us. 
Guilford Press. 

Hayes, L. M. (1989). National study of jail suicides: Seven years later. Psychiatric Quarterly, 
60(1), 7-29. 

Kaminsky, A. (2001). A Complete Guide to Premises Security Litigation (2nd ed.). Chicago: 
American Bar Association. 

Kelling, G. L., Pate, T., Dieckman, D., & Brown, C. E. (1974). The Kansas City preventive 
patrol experiment. Washington, DC: Police Foundation. 

Kennedy, D. B., & Homant, R. J. (1988). Predicting custodial suicides: Problems with the use 
of profiles. Justice Quarterly, 5(3), 441-456. 

Kennedy, D. B., & Savard, D. M. (in press). Delayed in-custody death involving excited 

delirium. 

Journal of Correctional Health Care. 

Kennedy, D. B. (2013). Applications of forensic sociology and criminology to civil litigation. 
Journal of Applied Social Science, 7(2), 233-247. 

Kennedy, D. B. (2006). Forensic security and the law. In M. Gill (Ed.), The Handbook of 

Security 
(pp. 118-145). New York: Palgrave Macmillan. 

Kitchen, T., & Schneider, R. H. (2007). Crime prevention and the built environment. 
Routledge. 

Kram, K. E., Wasserman, I. C., & Yip, J. (2012). Metaphors of identity and professional 
practice: Learning from the scholar-practitioner. The Journal of Applied Behavioral 
Science, 48(3), 304-341. 

Kuhns, J. B., Dolliver, D., Bent, E., & Maguire, E. R. (2016). Understanding firearms assaults 


27 


Journal of Physical Security 10(1), 8-29 (2017) 


against law enforcement officers in the United States. Washington, DC: Office of 
Community Oriented Policing Services. 

Lang, E., Stockwell, T., Rydon, P., & Lockwood, A. (1995). Drinking settings and problems of 
intoxication. Addiction Research, 3(2), 141-149. 

Lewinski, W., O’Neil, D., Redmann, C., & Thiem, P. (2016). The speed of a prone subject. Law 
Enforcement Executive Forum, 16(1), 70-83. 

Martinez, R., & Valenzuela Jr, A. (2006). Immigration and crime: Race, ethnicity, and violence. 
NYU Press. 

Marotta, P., & Caplan, J. M. (2013). Felonious assault and injury to law enforcement: 
Epidemiology and spatial risk factors. Rutgers Center on Public Security Policy 
Brief, December, 1-18. 

Miethe, T. D., McCorkle, R. C., & Listwan, S. J. (2001). Crime profiles: The anatomy of 
dangerous persons, places, and situations. Roxbury Publishing Company. 

Morenoff, J. D., Sampson, R. J., & Raudenbush, S. W. (2001). Neighborhood inequality, 
collective efficacy, and the spatial dynamics of urban violence. Criminology, 39(3), 517- 
558. 

Moreto, W. D., Piza, E. L., & Caplan, J. M. (2014). “A Plague on both Your Houses?”: Risks, 
Repeats and Reconsiderations of Urban Residential Burglary. Justice quarterly, 31(6), 
1102-1126. 

Morewitz, S., & Goldstein, M. (Eds.) (2013). Handbook of Forensic Sociology and Psychology. 
New York: Springer. 

Nalla, M. K., & Crichlow, V. J. (2014). Have the standards for private security guards become 
more stringent in the post 9/11 era? An assessment of security guard regulations in the 
US from 1982 to 2010. Security Journal. 

Parrillo, V. N. (1986). Strangers to these shores: Race and ethnic relations in the United 
States. Macmillan. 

Patrick, U. W., & Hall, J. C. (2005). In Defense of Self and Others--Issues, Facts & Fallacies: 
the Realities of Law Enforcement'’s Use of Deadly Force. Durham, NC: Carolina Academic 
Press. 

Petherick, W., Turvey, B., & Ferguson, C. (2009). Forensic Criminology. Burlington, MA; 


Academic Press. 


28 


Journal of Physical Security 10(1), 8-29 (2017) 


Quigley, B. M., & Leonard, K. E. (2004). Alcohol use and violence among young adults. 
Alcohol Research, 28(4), 191-194. 

Ross, D. L. (2012). Civil Liability in Criminal Justice. Routledge. 

Rudd, M. D., Berman, A. L., Joiner Jr, T. E., Nock, M. K., Silverman, M. M., Mandrusiak, M., 
& Witte, T. (2006). Warning signs for suicide: Theory, research, and clinical applications. 
Suicide and Life-Threatening Behavior, 36(3), 255-262. 

Savard, D. M., & Kennedy, D. B. (2014). Crime and security liability concerns at shopping 
centers. In K. Walby and R. K. Lippert (Eds.) Corporate Security in the 21st Century: 

Theory 
and Practice in International Perspective (pp. 254-275). New York: Palgrave Macmillan. 

Spelman, W. (1993). Abandoned buildings: Magnets for crime?. Journal of Criminal Justice, 
21(5), 481-495. 

Thompson, J. R., & Starkman, G. L. (1973). Citizen Informant Doctrine, The. J. Crim. L. & 
Criminology, 64, 163. 

Welsh, B. C., & Farrington, D. P. (2003). Effects of closed-circuit television on crime. The 
Annals of the American Academy of Political and Social Science, 587(1), 110-135. 

Wilson, J. Q., & Kelling, G. L. (1982). Broken windows. Critical issues in policing: 
Contemporary readings, 395-407. 

White, G. F. (1990). Neighborhood permeability and burglary rates. Justice Quarterly, 7(1), 
57-67. 


29 


Journal of Physical Security 10(1), 30-56 (2017) 


A Vulnerability Assessment of “Indelible” Voter’s Ink* 
Roger G. Johnston, Ph.D., CPP 


Right Brain Sekurity 
http://rbsekurity.com 


Abstract 


Many countries use supposedly “indelible” ink to stain a voter’s finger to prevent 
multiple votes by the same person. This ink is usually composed of silver nitrate, and is 
sometimes also used when countries replace their currency. In this study, I devise and 
demonstrate 6 different low-cost methods for preventing and/or removing silver nitrate 
stains. Though not fully optimized, all of these methods worked fairly well, and can 
probably be used in practice for duplicate voting multiple times per day per voter. The 
attacks might also work for the less common uv-fluorescent voter inks. I propose 
countermeasures for detecting these kinds of attacks, but it is questionable if they are 
adequate to detect voter fraud. This work is only preliminary and has serious limitations. 


Introduction 


At least 38 countries currently use (or have at least recently used) supposedly indelible 
ink during elections in an attempt to prevent fraudulent double voting.[1] Before or after 
casting a ballot, a voter has his or her finger stained with an ink, which is usually based on 
silver nitrate. The stained finger is intended to tag the voter and prevent him/her from 
voting more than once. Election officials must check a voter’s fingers for the absence of the 
silver nitrate stain before allowing them to vote. Voter’s ink has also been used to limit 
fraud in currency exchanges when a country shifts over to new currency.[2-4] 


In some countries, the little finger is stained [5, 6]; others apply the stain to the pointer 
(index) finger or the thumb [7-11]. In Kenya, women who are wearing nail polish can have 
the ink applied to the web between two fingers.[33] The silver nitrate stain typically wears 
off skin in about 4 to 7 days. It may take several weeks for the stain on the fingernail or 
cuticle to disappear.[9] 


The voter’s ink is applied in a number of different ways, depending on the country and 
election jurisdiction.[8, 9, 12, 13] Some countries have the voter dip his/her hand in the 
ink. In others, the ink is sprayed on, painted on with a brush or stick, or applied with a felt 
tip pen. For the latter, a thick line is often drawn [14-16] between the middle (or end) of 
the fingernail, perpendicular to the cuticle, and onto the skin, as shown in figure 1. 


* This paper was not peer reviewed. 


30 


Journal of Physical Security 10(1), 30-56 (2017) 


In some countries, the voter’s ink is applied before the voter gets the ballot.[6, 11, 17-20] 
This tends to leave stains on the ballot or voting machine if the silver nitrate on the voter’s 
finger has not fully dried.[17, 18, 21] Other countries or election jurisdictions apply the 
voter’s silver nitrate just before the voter exits the polling place, possibly to avoid this 
problem.[10, 13, 22] 


Election officials and manufacturers of the voter’s ink frequently claim that it is difficult 
or “nearly impossible” or “impossible” to remove the silver nitrate stain from a finger.[14- 
16, 23-25] In my experience, claims that any kind of security can’t be defeated are usually 
(or always?) erroneous.[27, 28] Moreover, simple attacks often work well, even against 
high-tech security [29] (which silver nitrate staining is not). 


This paper is an account of a rudimentary vulnerability assessment to identify and briefly 
test various ways to defeat silver nitrate voter’s ink. I then propose possible 
countermeasures to the attacks. These are countermeasures that election officials could 
potentially use to reduce fraudulent voting. Another use for this information is that honest 
voters may want to remove silver nitrate stains after voting, including for their own 
security. Terrorists have reportedly attacked people with stained fingers, and domineering 
husbands have attacked their wives, in an attempt to discourage voting.[9, 30-32, 34] 


Voter’s Ink Chemistry 


Most or all of the supposedly “indelible” voter’s ink is made by dissolving silver nitrate, 
AgNOs, in water. The solution is crystal clear when the silver nitrate is pure. When applied 
to the skin or fingernail, the silver nitrate in the solution reacts with salt (sodium chloride) 
on the finger to form silver chloride (AgCl) and sodium nitrate (NaNO3) as follows: 


AgNO3 + NaCl => AgCl + NaNO3 {1} 


When exposed to light, primarily ultraviolet (uv) light but to a lesser extent, blue light, 
the silver chloride decomposes into silver metal and chlorine (which diffuses away). See 
reaction {2}. 


AgCl + uvlight -> Ag + Cl {2} 


Both silver nitrate and sodium nitrate are highly soluble in water. AgCl is only slightly 
soluble, however, and silver (Ag) is not soluble in water or most solvents. The silver in 
reaction {2} that builds up due to the breakdown of AgCl becomes a stain that takes on 
various colors as it darkens, primarily grey, purple, and brown, before eventually becoming 
dark black with perhaps a hint of hematite red. Adding to the black color may be the 
tarnishing of the silver as it slowly reacts with water, sulfur, and various organic 
compounds on the finger. The silver nitrate stain can darken in minutes under direct 
sunlight, but may take an hour or more at low to moderate light levels. 


31 


Journal of Physical Security 10(1), 30-56 (2017) 


Figure 1 shows my thumb after it was stained with a 15% (w/v) pure solution of silver 
nitrate, and also by the same solution with a green food color dye added (“doped in”). The 
two lines on the thumb are parallel. Both silver nitrate solutions were applied with a Q-tip 
starting on the skin, and moving up to the thumbnail, traveling perpendicular to the cuticle. 
This mimics the way that many countries apply the silver nitrate solution with a brush or 
felt tip pen. The thumb is shown after 2 hours of indoor illumination (middle) and after an 
additional 6.5 hours of sunlight (right). 


Figure 1 - Silver nitrate stains. Left: a colorless 15% silver nitrate solution was applied to the thumb 
(difficult to see in the photo), along with a colored version parallel to the first line. Stains are shown at 2 
hours (middle photo) after illumination from indoor lighting, and after 6.5 hours of additional illumination 
from sunlight (at right). 


Most voter’s inks [2, 9, 16], have a silver nitrate concentration of between 10% and 20% 
(w/v), though occasionally a 5% concentration is used [2, 8]. The greater the 
concentration, the faster the stain darkens, the darker it ultimately becomes, and the longer 
it lasts. There is little point, however, to using a concentration greater than 18% since 
higher concentrations do not increase the speed of appearance, the darkness of the stain, or 
its longevity.[9, 16] Moreover, the higher concentrations (especially > 25%) also introduce 
more health risks for voters and election officials. Silver nitrate is a skin and eye irritant, 
toxic in large quantities, and can occasionally cause significant injury.[9, 16, 23, 35, 42] 


It turns out to be difficult to obtain actual voter’s ink in small quantities in the United 
States. This is presumably due to lack of demand. Instead, I used a 15% (W/v) pure 
solution of silver nitrate. This was manufactured by AZ Laboratories. 


Voter’s ink formulations often include a water-soluble colored dye so that the solution 
can be initially more easily seen, especially at first application.[2, 9, 11, 14, 22] See figure 1. 
Without this dye, it is difficult to determine if or where the clear silver nitrate solution has 
been applied until the stain begins to darken via reactions {1} and {2}, which can take 
minutes to hours, depending on the amount of sodium chloride on the finger and the 
illumination level. Voter’s inks also often have a biocide to retard the growth of 
microorganisms.[2] Ethanol is sometimes added to speed up the drying process when the 


32 


Journal of Physical Security 10(1), 30-56 (2017) 


ink is applied to a finger.[2, 21] Though rare, some voter’s inks include (or consist entirely 
of) uv-fluorescent dyes, which require an ultraviolet (uv) light to detect.[55] 


Previously Proposed Attacks 


Various attacks on the voter’s ink have been previously proposed or demonstrated by 
others.[11, 14, 16, 24, 25, 36-40] Many involve household chemicals. None of these 
methods seem likely to be effective or practical except possibly the reported method of 
removing the stain using a match and considerable rubbing.[14] The sulfite in the match 
head presumably helps with the stain removal. This attack (which I did not test) 
reportedly takes about 7 minutes [14] and might be impractical when the stain is applied to 
a large area of the finger rather than just being a stain line as in figure 1. 


Remarkably, none of these previously proposed attacks are “backdoor” attacks, except 
for the candle wax attack discussed in reference [41]. All the other methods involve trying 
to deal with the silver nitrate stain only after it forms. In this context, a backdoor attack 
involves the vote cheater treating his finger before staining in a way that prevents the stain 
from forming or fully forming in the first place, or in a way that at least makes it much 
easier to remove the stain after the silver nitrate is applied. (More generally, a backdoor 
attack on security involves tampering with the security design or inserting alien features in 
a Way that permits the security to be defeated easily at a later time.) The backdoor attack 
discussed in reference [41] involved putting candle wax on the finger to block the silver 
nitrate. The wax, however, would not be very wettable, is probably not very transparent, 
and would likely be easily spotted by election officials based on its appearance or behavior. 


New Attacks 
I devised and tested 6 new attacks to defeat voter’s inks. They are as follows: 


Attack #1 - Keep the Finger in the Dark 


The silver nitrate stain relies upon the presence of NaCl on the finger and on light. The 
simplest attack is to reduce the amount of both. The protocol for this attack is as follows: 


1. Wash both hands and the relevant finger thoroughly with hot water and soap to 
dissolve away the NaCl. (In a hot climate, it may be difficult to keep hands from 
perspiring so the washing should occur as close to the time of entering the polling place 
as possible.) 


2. Once the silver nitrate ink is applied at the polling place, do whatever you can to 
shield the finger from light, as long as this does not attract undue attention. This can 
most easily be done by making a fist and/or pointing the stained portion of the finger 
towards the floor or your body where the finger is likely to receive less illumination. 
Alternately, sticking the finger in a purse, small cardboard tube, or a coffee cup might 


33 


Journal of Physical Security 10(1), 30-56 (2017) 


substantially reduce the illumination reaching the silver nitrate without attracting 
notice by election officials. 


3. After leaving the polling place, keep the finger in the dark to the extent practical. As 
soon as possible, wash the finger under low-light conditions with soap and running hot 
water for 20 seconds (using a nail brush) to wash off the silver nitrate. (The silver 
nitrate in voter’s ink is very soluble in water even after the solution dries.) 


4. Quickly dry the finger and put it in total darkness by covering it with an opaque 
glove. A lower cost approach is to make an aluminum foil cot which is crimped on the 
finger, as shown in figure 2. A little masking tape can help keep the cot in place if 
necessary. 


5. Remove the cot just before (illegally) voting the next time. If there is any slight 
staining on the nail or skin, remove it with a flexible, foam emery board nail file (much 
more effective and maneuverable than a rigid, metal nail file). Alternately, it is quicker 
and easier to use a relatively inexpensive electronic “nail filing system”, such as shown 
in figure 3. This is basically a horizontal mill with a spinning carbide wheel that can 
abrade a fingernail, cuticle, or nail polish (or skin). In this paper, I will call such devices 
“nail grinders’”—inelegant terminology but essentially accurate. These nail grinders are 
used by professional nail technicians in many nail salons (though they don’t call them 
“nail grinders”), and by consumers at home. A fingernail or the skin can only be deeply 
abraded approximately 2-3 times by a nail grinder before it becomes too damaged.[42| 


6. Repeat these steps for additional fraudulent duplicate votes by the same person. 


Figure 2 - Acrimped aluminum foil cot to protect the stained finger from exposure to light. 
In this photo, it is on the pointer (index) finger of the right hand. 


Figure 3 - The Kupa Manipro electric nail filing system (“nail grinder”) used in this work for demonstrations. 


34 


Journal of Physical Security 10(1), 30-56 (2017) 


Attack #2 - Egg White Protective Coat 


1. Wash both hands and the relevant finger thoroughly with hot water and soap to 
dissolve away the NaCl. (In a hot climate, it may be difficult to keep hands from 
perspiring, so the washing should occur as closely to the time of entering the polling 
place as possible.) Dry the finger. 


2. Dip the finger in egg white from a raw chicken egg until it is well coated. Remove 
any air bubbles and re-dip. Allow to dry. (This can take a few minutes.) The dried egg 
white, which is not very water soluble, is intended to be a barrier that shields the finger 
from the silver nitrate. 


3. As with Attack #1, once the silver nitrate is applied at the polling place, do whatever 
you can to shield the finger from light, as long as this does not attract undue attention. 


4. After leaving the polling place, keep the finger as dark as practical. As soon as 
possible, wash the finger under low-light conditions with soap and running hot water 
for 20 seconds to wash off the silver nitrate. Use a nail brush. 

5. To remove the egg white, dip the finger in raw egg white and wipe off the original 
egg white coating with a tissue. Liquid egg white is the best way to remove dried egg 
white. Do this under low-light conditions. 


6. Wash the finger in hot water and soap under low-light conditions. 


7. Dry the finger and put it in total darkness by covering it with an opaque glove or an 
aluminum foil cot. 


8. Remove the glove or cot just before (illegally) voting the next time. If there is any 
slight staining on the nail or skin, remove it with a foam emery board nail file, or an 


electric nail grinder. 


9. Repeat these steps for additional fraudulent votes by the same person. 


Attack #3 - KI Protective Coat 


1. Wash both hands and the relevant finger thoroughly with hot water and soap to 
dissolve away the NaCl. 


2. Dry the finger. 
3. Brush on a 1% solution of KI in water. Allow to thoroughly dry. Since KI reacts with 


(and dissolves) silver nitrate, it can potentially help to keep the silver nitrate from 
penetrating the skin or fingernail. 


35 


Journal of Physical Security 10(1), 30-56 (2017) 


4. Once the silver nitrate ink is applied at the polling place, do whatever you can to 
shield the finger from light, as long as this does not attract undue attention. 


5. Upon leaving the polling place after voting, put the finger in total darkness using an 
opaque glove, finger cot, or some other method. 


6. As soon as possible, rinse the finger in a 16% solution of KI (w/v) under low-light 
conditions. Brush the finger vigorously with a toothbrush wetted with the KI solution 
for 20 seconds. Flex the knuckles as you do this to increase penetration. 


7. Still under low light conditions, repeat step 6 except use a 16% solution (w/v) of KBr 
and a different toothbrush. 


8. Wash the finger with hot water and soap under low-light conditions, then dry the 
finger. 


9. Place the finger in complete darkness using an opaque glove or a single finger cot 
made of aluminum foil or some other method. 


10. Remove the glove or cot just before (illegally) voting the next time. If there is any 
slight staining on the nail or skin, remove it with a foam emery board nail file, or with 
an electric nail grinder. 


11. Repeat these steps for additional fraudulent votes by the same person. 


The reasoning behind the KI and KBr rinses in Attack #3 is as follows: The water in the 
16% KI-water solution dissolves much of the silver nitrate off the finger, because silver 
nitrate is highly soluble in water. The KI in the 16% KI-water solution dissolves off much of 
the remaining silver nitrate by reacting with it as shown in reaction {3}. 


AgNO3 + KI => Agl + KNO3 {3} “KI aqueous rinse” 


The Ag] that results from reaction {3} is less light sensitive than the AgCl in {1}, so will 
generate less staining. (The order of silver halide light sensitivity goes AgBr > AgCl > Ag] 
[43].) Some of the AgC]l that formed via reaction {1} before the KI rinse will be dissolved by 
the water in the KI solution, though not much because AgCl is not very soluble. See table 1. 
(The sodium nitrate and potassium nitrate products formed in reactions {1} and {3}, in 
contrast, are highly soluble in water.) 


Now we could potentially stop after reaction {3}, having dissolved and consumed most of 
the silver nitrate, and having formed the least light sensitive silver halide (AgI). The 
problem, however, is that some of the silver nitrate will have been converted to AgCl via {1} 
in the time delay between staining the finger and doing the KI rinse. So with the KBr rinse, 
we dissolve out this AgCl using the water in the KBr solution (AgCl is slightly water 
soluble), but more importantly (see reaction {4}) we dissolve the AgC]l on the finger by 


36 


Journal of Physical Security 10(1), 30-56 (2017) 


having it react with the KBr in the solution. The downside to this KBr rinse is that it leaves 
us with the most light sensitive of the silver halides, AgBr, as a product. Fortunately, 
however, AgBr is at least a little soluble in water, plus there will be very little of it left at 
this point anyway. 


AgCl + KBr -> AgBr + KCl {4} “KBr aqueous rinse” 


The AgI formed in reaction {3} is dissolved off the finger partially with the KBr solution, 
but some of it forms AgBr in the KBr rinse via reaction {5} below. Again, this is not 
desirable because AgBr is the most light sensitive of the three silver halides; fortunately, 
the amount of AgBr present at that point should be quite low. 


Agl + KBr => AgBr + Kl {5} “undesirable side reaction” 


Any slight stain that might appear over time after the KI and KBr rinses is probably due 
to whatever silver halides are left on the finger after the rinses, and whatever inaccessible 
silver nitrate was left on the finger. Rinsing with hot water before the KI rinse in Attack #3, 
and also between the KI and KBr rinses might make sense to try to reduce the silver halide 
products and trace amounts of silver nitrate further, but this wasn’t tested. 


Table 1 - The solubility of 3 silver halides in water at 25°C.[44] 


silver halide aaa 
AgCl 1.93 
Agl 0.026 
AgBr 0.135 


Attack #4a - Egg White Protective Coat with KI & KBr Rinses 


This attack is identical to Attack #2 except that we rinse with 16% KI and KBr solutions 
as is done for Attack #3. 


Attack #4b - 1% KI Coat + Egg White Protective Coat with KI & KBr Rinses 


This attack is identical to Attack #4a except that we apply a 1% KI solution (w/v) to the 
finger prior to the egg white coat. The finger is allowed to dry thoroughly before dipping 
the finger in egg white. 


Attack #5 - Matte Fingernail Protective Topcoat with KI & KBr Rinses 


37 


Journal of Physical Security 10(1), 30-56 (2017) 


1. Wash both hands and the relevant finger thoroughly with hot water and soap to 
dissolve away the NaCl. 


2. Dry the finger. 


3. Brush on Revlon 790 Matte Top Coat on the finger—including on the fingernail, 
cuticle, and skin. (A matte coat is less glossy than regular fingernail polish or topcoat, 
and so less detectable. It is also better wetted by an aqueous solution of silver nitrate.) 
Allow to thoroughly dry. This may take several minutes. The purpose of the topcoat is 
to serve as a physical barrier to keep the silver nitrate from reaching the finger. 


4. Once the silver nitrate ink is applied at the polling place, do whatever you can to 
shield the finger from light, as long as this does not attract undue attention. 


5. Upon leaving the polling place after voting, put the finger in total darkness using an 
opaque glove, finger cot, or some other method. 


6. As soon as possible, rinse the finger in a 16% solution (w/v) of KI under low-light 
conditions. Brush the finger vigorously with a toothbrush wetted with the KI solution 
for 20 seconds. Flex the knuckles as you do this for maximum penetration. 


7. Still under low light conditions, repeat step 6 except use a 16% solution (w/v) of KBr 
and a different toothbrush. Flex the knuckles as you do this for maximum penetration. 


8. Still under low-light conditions, rinse the finger in an acetone-based consumer nail 
polish remover. Brush vigorously with a toothbrush wetted with acetone for 20 


seconds. Wipe with an acetone-soaked tissue. This removes the Revlon topcoat. 


9. Wash the finger with hot water and soap under low-light conditions, then dry the 
finger. 


10. Place the finger in complete darkness using an opaque glove or a single finger cot 
made of aluminum foil or some other method. 


11. Remove the glove or cot just before (illegally) voting the next time. If there is any 
slight staining on the nail or skin, remove it with a flexible emery board nail file or with 


an electric nail grinder. 


12. Repeat these steps for additional fraudulent votes by the same person. 


38 


Journal of Physical Security 10(1), 30-56 (2017) 


Appearance and Wettability 


While it is uncertain if election officials would even notice, a protective coating made 
from a standard (glossy) nail polish looks suspiciously shiny, and a silver nitrate solution 
does not wet it well. See the middle finger in figure 4. I found that Revlon 790 fingernail 
matte topcoat (a popular beauty product) looks less suspicious and wets fairly well. The 
wettability of the egg white coating falls in between a matte and a glossy polish or topcoat. 


I have demonstrated that wettability can be increased for either the egg white or the 
matte topcoat by slightly roughing up the surface of the protective coating with an emery 
board (to increase the surface area), and then wiping it with an alcohol (isopropanol) pad 
and/or a dilute detergent solution shortly before staining. Theoretically, if the egg white or 
topcoat are lightly steamed, they also should become more wettable, though I did not test 
this. 


Figure 4 - Three fingers of my right hand are shown with protective coatings applied above the top knuckles, 
ie., on both skin and fingernail. The photo on the left shows the coatings after they have dried. In the photo 
on the right, the simulated voter’s ink has been applied across the cuticle, but the (green doped) silver nitrate 
has not yet formed a darkened stain. The pointer finger (leftmost in either photo) has an egg white coating 
with a slightly glossy appearance and wets moderately well. The middle finger is coated with a standard 
glossy nail polish and appears quite shiny if inspected carefully. Glossy nail polishes do not wet well, which 
might also look suspicious at the polling place (if anybody is watching). The ring finger has a coating made 
from the Revlon 790 fingernail matte topcoat; it does not appear suspiciously glossy and it wets the best of 
the 3 coatings. 


Safety Issues 


The KI and KBr solutions used for some of the above proposed attacks are arguably less 
hazardous than silver nitrate itself, which does not appear to be a particularly safe 
chemical to be applying to the skin of millions of voters [35, 45-47], though it is sometimes 
used for medical purposes [23]. Acetone also is relatively harmless in these low quantities, 


39 


Journal of Physical Security 10(1), 30-56 (2017) 


though there is a flammability risk [48]. Acetone, however, is widely used in the home and 
in nail salons as a fingernail polish remover with apparently few problems. 


Note that either Nal or Lil could be used in place of KI, and NaBr or Nal could be used in 
place of KBr for the rinses, but these compounds are slightly more toxic when ingested in 
significant quantities than KI and KBr. 


Results 


Figure 5 shows the typical results for Attack #1. A 15% (w/v) silver nitrate solution with 
green food color dye was applied to my middle finger along a line perpendicular to the 
cuticle, as in figures 1 and 4. Immediately after staining, the finger was semi-protected 
from illumination for 10 minutes by forming a fist. This 10-minute period is meant to 
simulate the time between applying the silver nitrate ink and exiting the polling place. 
(Longer times didn’t change the results much.) The room illumination during this 10- 
minute period was 350 lux—fairly typical of at least indoor U.S. polling places—and was a 
mix of natural light, fluorescent lights, and LED light bulbs. 


After the 10 minutes, the finger was rinsed in distilled water under low-light conditions. 
It was then kept in the dark using an aluminum cot, as in figure 2. 


The middle photo in figure 5 shows the finger 7.8 hours after applying silver nitrate. 
Some light green salt (NaCl/KI) and a small amount of silver nitrate stain can be seen. | 
buffed this off in 30 seconds using a foam nail emery board. The result in shown in the 
photo on the right. Another person could have done this touchup faster, as it is awkward to 
work on one’s own nails. A professional nail technician could have done it in a few seconds, 
with less nail scratching, as was demonstrated to me by a professional nail technician.[42] 


Figure 5 - Attack #1. The washed but uncoated finger is stained with a 15% silver nitrate doped with a 
green dye (left) as it might be at the polling place. After being kept in the dark for 7.8 hours, the finger 
appeared as in the middle photo. Some light buffing removed the minor staining (right photo). 


40 


Journal of Physical Security 10(1), 30-56 (2017) 


It is doubtful that the nail scratches seen on the rightmost photo of figure 5 would make 
an election official suspicious. Laborers and craftspeople often have banged up fingernails. 
In any event, the scratches tend to heal themselves fairly quickly as skin oil fills them. 
Professional nail technicians often use Jojoba oil to accomplish the same thing immediately. 


Figure 6 shows what happened to the finger in figure 5 after being exposed to sunlight 
for 5 hours more. A slight silver nitrate stain appeared. This sometimes happens for 
Attack #1, but would not have happened if the finger had been returned to the dark after 
taking the rightmost photograph in figure 5 rather than exposing the finger to sunlight. 
The stain on the leftmost photo in figure 6 was easily buffed off in under 30 seconds, with 
the result shown on the right. 


These late appearing, light “ghost stains” are much easier to remove than the deeper and 
darker stains that form on voter’s hands if no attacks are attempted. The Cheer #3 [49] 
solution, discussed below, can also be of help in removing the ghost stains from skin, but 
should not be needed unless the voter allowed the finger to receive too much light. 


Figure 6 - Any ghost stain that appears later (left) due to sunlight exposure can be easily buffed off (right). 


Attack #2 is slightly more effective than Attack #1 in that it leaves less of a ghost stain or 
else none at all. The egg white (albumen) coating applied before the staining reduces the 
amount of silver nitrate that reaches the skin or fingernail. 


Figure 7 shows the successful results of Attack #3, where there are KI and KBr rinses to 
remove the silver nitrate and silver halides. The thumb was kept in the dark after the 
rinses, as is part of the Attack #3 protocol. 


Attacks #4a and #4b were even more effective than Attacks #1, #2, and #3, often leaving 


virtually no stain at all even many hours later. The KI and KBr rinses apparently effectively 
removed the silver nitrates and silver halides. 


41 


Journal of Physical Security 10(1), 30-56 (2017) 


Figure 7 - This shows typical results for Attack #3. The top left photo was taken immediately after the 
green-dyed 15% silver nitrate solution was applied to my thumb using a Q-tip. After 6 hours in the dark, the 
thumb appeared as shown in the upper right photo. The light green salt stain was quickly and easily buffed 
off. The thumb was then returned to the dark. Lower left: at 23 hours after the silver nitrate was applied, 
some staining shows, but this was buffed off by me in 30 seconds with an emery board, resulting in the photo 
on the lower right. Some of the light staining shown in the lower left photo may have been due to the brief 
illumination used to take several photographs of the thumb as part ofa time series. This illumination done to 
document the experiment would not have occurred in practice. 


Figure 8 shows typical results for Attack #5. This was the most effective attack. The 
leftmost photo in figure 8 shows the finger immediately after staining with a 15% silver 
nitrate solution doped with a green dye. The middle photo shows the finger immediately 
after the KI/KBr rinses. There was no stain at 17 hours (not shown) with the finger kept in 
the dark using an aluminum foil cot. 


The photo on the right in figure 8 shows the finger after the cot was removed 17 hours 


after “voting”, and the finger was exposed to sunlight for an additional 5 hours. The very 
slight silver nitrate stain barely visible in the middle photo was removed quickly with a 


42 


Journal of Physical Security 10(1), 30-56 (2017) 


foam emery board, but it is doubtful this would be necessary to fool an election official. 


Figure 8 - Attack #5 using a Revlon matte topcoat. The nearly invisible silver nitrate stain seen in the middle 
photo that formed after 23 hours (with 5 hours of that in sunlight) was easily removed with an emery board 
in seconds to produce the right photo, even though this would probably not be necessary in real voting fraud. 


If a finger was dipped fully into the silver nitrate solution up to 2 cm deep (instead of 
staining ina line as in figure 8), attack #5 produced the same results: there was no 
evidence of staining after 12+ hours, as long as the finger was kept in the dark. If the finger 
was subsequently exposed to illumination, only a very light ghost stain could be seen, and 
this was easy to buff out, though it took more time because a larger area was involved. 


Table 2 shows the estimated turnaround time for each attack, i.e., how many minutes are 
needed to prepare a voter for the next illegal vote. The assumption is that all materials and 
equipment are in place to start. Turnaround times might be longer in high-humidity 
climates because a significant amount of the time needed for the attacks involves thorough 
drying of the finger. A heat source or dehumidifier, however, could probably be used to 
speed up evaporation. 


Table 2 - The estimated time a voter needs to be ready for another illegal duplicate vote, and the 
approximate number of votes possible per voter in a 12-hour period. These times ignore transportation time 
to and from the polling place, or long delays in the voting process. 


estimated approximate number of 
Attack # turnaround votes per voter in 
time (mins) 12 hours 

1-Keep the Finger in the Dark 7 100 
2-Egg White Protective Coat 28 25 
3-KI Protective Coat 25 25 
4a-Egg White Protective Coat with KI & KBr Rinses 35 20 
4b-1% KI Coat, Egg White Protective Coat, KI & KBr Rinses 40 18 
5-Matte Fingernail Protective Topcoat with KI & KBr Rinses 40 18 


43 


Journal of Physical Security 10(1), 30-56 (2017) 


The slowest attack would allow a voter to cast about 18 votes per 12-hour period. 
Duplicate votes, however, may be limited if the skin or fingernails have to be substantially 
ground down more than 2 times using the flexible emery boards or the electric nail grinder. 


Turnaround times would probably be shorter—and the cleanup of light stains quicker 
and better—if a professional nail technician were deployed for the attack. While I could 
not find any statistics on the prevalence of professional nail technicians in various 
countries, it appears that most or all of the countries that use voter’s ink have a large 
number of nail salons. Even if nail technicians were hired, however, they are usually 
relatively low-wage workers (despite their artistry). Thus, it is reasonable to assume that 
voter cheaters could have access to nail technicians to help with the voting fraud, though it 
is not mandatory. 


Attack Costs 


The cost of these attacks is modest. For example, the cost of the Revlon matte topcoat is 
less than 7¢ per finger at retail prices. All of the materials, supplies, and equipment are 
readily available, even in developing countries. Based on the costs of items I procured to 
study and demonstrate these attacks, the estimated marginal cost [50] for the most 
expensive attack (#5) is 54¢ per vote at retail prices. For the least expensive attack (#1), 
the margin cost is only 4¢ (retail). At wholesale prices, these marginal costs would be 
approximately 20¢ and 2¢, respectively. The marginal costs are based on the cost of 
consumable materials and supplies. 


There are also expenses for non-consumable equipment. The retail cost of the items | 
needed to execute the attacks—which would be sufficient for at least several thousand 
fraudulent votes—was $170 at retail prices, and $128 at wholesale prices. 


This means that the TOTAL cost of 1000 fraudulent votes (which could be executed by 
56 or fewer voters, each voting 18 times in a 12-hour period) would vary between $148 
and $328 at wholesale prices, depending on the attack. All prices are in U.S. dollars. The 
actual cost might be less if prices are lower in developing countries, and if the equipment 
can be resold afterwards as used goods (or put to use in scamming future elections). 


No labor costs were included in these estimates as the conspirators can probably rely on 
volunteer labor. 


Possible Attack Variations and Alternative Attacks 


For the protective coating for Attack #5, I found the Revlon 709 matte topcoat to be the 
most effective. I also experimented with a Sally Hansen brand Big Matte Top Coat. This 
product is less expensive but did not protect the finger as well and did not wet as well. | 
also experimented briefly with a liquid bandage available in pharmacies to form a 
protective coating over cuts in the skin. This makes a very effective seal when it dries, but 


44 


Journal of Physical Security 10(1), 30-56 (2017) 


it is quite hydrophobic and so is difficult to wet. Also, itis much more expensive than 
either egg white or nail topcoats, and harder to remove. 


I also did not test various consumer semi-water-soluble worker’s hand creams, typically 
containing sodium silicate. These might make effective protective coats despite being 
somewhat water-soluble. 


The professional nail technician who served as a consultant for this study [42] suggested 
acrylic nail polish as a protective coat, though I did not test this. It is matte in appearance, 
much stronger than conventional nail polish or topcoat, and can be cleaned quickly by 
wiping it with acetone. Only the top surface of the acrylic gets softened when doing this. 
The fingernail must be soaked in acetone for a number of minutes to totally remove the 
acrylic. 


For all the attacks I studied, the cheating voter needs to immerse the finger in water 
and/or the KI and KBr solutions as quickly as possible. It is plausible that this could 
actually be done surreptitiously at the polling place, especially if there are private voting 
booths. Even if there are not, the voter might be able to slip the finger into a coffee cup 
containing distilled water or a KI solution without attracting much attention. 


The 16% concentrations of KI and KBr used for the rinses for Attacks #4a, #4b, and #5 
was somewhat arbitrarily chosen. Improved attack performance might be possible with 
more experimentation to determine the optimal concentration. Similarly, the choice of a 
1% concentration of KI to coat the finger in Attack #4b was also somewhat arbitrary. If, 
however, the silver nitrate ink comes in direct contact with too high a concentration of KI 
on the finger, a large quantity of white salt (AgI) forms instantly and looks suspicious. 


In addition to using foam emery nail boards and the nail grinder to remove any remnant 
stain, inexpensive tools such as cuticle pushers and nippers used at nail salons can help 
clean up any residual stain left on the cuticle, which tends to get deeply stained.[9, 15, 42] 


Over the years, scientists, medical personnel, and lab technicians have proposed various 
chemicals to remove silver nitrate stains from the hands and clothing.[49, 51, 52]. They 
were not focusing on voting fraud. For example, potassium cyanide has been discussed as a 
silver nitrate stain remover [51] but it is quite toxic. Other chemicals that have been 
proposed include sodium thiosulfate solutions, ammonium chloride, sodium sulfite, and 
ammonia. I tested sodium sulfite and ammonia and found them to have little efficacy for 
silver nitrate stains on either skin or the fingernail. 


I did find 2 other previously proposed formulations for removing silver nitrate from the 
hands to be fairly effective. They were the Cheer #3 formulation [49], involving a freshly 
prepared aqueous solution of copper sulfate and sodium thiosulfate, and the Nolen 
formulation [52], which is a solution of sodium sulfite and calcium hypochlorite (“bleaching 
powder’). 


45 


Journal of Physical Security 10(1), 30-56 (2017) 


Both the Cheer #3 and the Nolen formulations worked moderately well on skin (with 
vigorous brushing using a nail brush), but neither formulation was very effective at 
removing silver nitrate stains on the fingernail. See figure 9. 


The Cheer #3 formulation is probably preferable to the Nolen formulation because the 
latter requires more caustic chemicals, and creates an exothermic reaction that generates a 
considerable amount of heat. While I did not test this, either formulation might work well 
as a replacement for the KI and KBr rinses in the attacks, although KI and KBr are safer, 
easier, and less expensive. 


Figure 9 - Partially removing silver nitrate stains using a freshly prepared Cheer #3 formulation.[49] At left 
is a 9-hour-old silver nitrate stain, darkened after extensive exposure to direct sunlight. On the right is the 
same finger after 10 seconds of soaking in the Cheer #3 formulation at 40° C, followed by 2 minutes of 
brushing with a nail brush soaked in the solution. 


Note that because it is primarily ultraviolent light, and to a lesser extent blue light, that 
drives reaction {2}, it isn’t fully necessary to Keep the stained finger in total darkness. The 
finger could potentially be kept under red light, like is done in film darkrooms. Indeed, 
reaction {2}, or the same thing with another silver halide, is the basis for black and white 
film photography. 


Countermeasures 


Based on this work, I can recommend a number of possible countermeasures that 
election officials might be able to use to detect these kinds of attacks. These counter- 
measures are not expensive, except possibly for the first countermeasure, but some might 
slow down the voting process. The countermeasures are listed in decreasing order of likely 
effectiveness. 


1. If practical, don’t use voter’s ink at all, but instead use biometrics, check voter IDs, 
issue voter certificates, and/or use voter checkoff lists to prevent multiple voting. This is 


46 


Journal of Physical Security 10(1), 30-56 (2017) 


already done in some countries (see references [10, 19, 20] for example) but the 
Gatekeeper Maxim (see below) must be avoided. Biometric devices are no longer 
expensive. There certainly are, however, disadvantages to using biometrics and/or 
checking voters IDs. Invasion of voter privacy, misuse of the data, the possible suppression 
of certain voting groups, slowing down the voting process, and voter techno-phobia are 
very real concerns. It can also be quite complicated to maintain/secure/coordinate 
biometric databases, implement complex verification or identification procedures, spot 
counterfeit IDs, and train election officials on the operation of biometric devices. With a 
voter checkoff list, there must be a detailed procedure in place to deal with the situation 
when the list indicates a voter has previously voted. 


2. Make the polling place as brightly illuminated as possible, ideally with light sources 
having a high ultraviolet (uv) content like the sun or mercury vapor lights. Fluorescent 
lights would be slightly better than LED or incandescent lights. Voting out-of-doors is ideal 
for creating an environment with high uv illumination because the sun has a lot of uv light. 


3. Make sure each voter has his/her finger exposed to bright illumination for a few 
moments just before they leave the polling place. This helps to drive reaction {2}. Ideally 
this would be direct sunlight, or else artificial illumination from an inexpensive uv (“black 
light”) light bulb, battery-powered uv flashlight, or a mercury vapor lamp. All these light 
sources have a considerable amount of uv light that can darken the silver nitrate stain. The 
reason the illumination should be at the end of the voting process and not at the beginning 
or middle is that you want the maximum build-up of AgCl on the voter’s finger before the 
major illumination. Ultraviolet light applied before AgCl forms is simply wasted. 


4. Conversely, stain the voter’s fingers as early in the voting procedure as possible. This 
allows the maximum amount of time for AgCl to form as the voter proceeds through the 
voting process. The disadvantage of this approach is that the silver nitrate stain may get 
smeared on the ballot or voting machine. 


5. Train election officials to watch for voters at the polling place who are clearly trying to 
protect their stained finger from light by making a fist, covering their finger, putting on 
gloves, using sunscreen on their finger to block uv light, inserting the finger into a darkened 
purse or bag of snack chips or rolled up newspaper or tube. 


6. Watch for voters who are sticking their finger into what appears to be a cup of coffee 
or a bottle of water. Alternately, do not allow liquids or liquid containers inside the polling 
place. They can be used to wash off the silver nitrate soon after staining, or to cause the 
silver nitrate to react with chemicals such as used in the attacks discussed in this paper. 


7. Educate election officials and the general public about what attacks look like so they 


can watch for suspicious activity in the polling place and out in public—like wearing gloves 
on election day when there would seem to be no reason. 


47 


Journal of Physical Security 10(1), 30-56 (2017) 


8. Before the voter has the voter’s ink applied, carefully check that the finger and 
fingernail does not appear unusual, wet, greasy, damaged, or unexpectedly glossy. 
(Caution: some people’s fingers are just naturally glossy or banged up.) 


9. Check the voter's cuticle before staining, and be sure the cuticle gets stained because it 
stains deeply. 


10. Protect the voter’s ink at all times, both prior to the election and during voting. 
Voters, crooked election officials, inside attackers at the ink factory, or burglars could swap 
out the voter’s ink (or the ink pens) for an ink that does not contain silver nitrate. 
Alternately, anyone could put a uv-absorbing chemical into the silver nitrate ink to prevent 
or retard the stain from forming, or else put enough sodium, lithium, or potassium salt into 
the voter’s ink bottle to eliminate all the silver nitrate that is needed to generate a finger 
stain. The silver nitrate ink should be replaced if a great deal of precipitate forms. 


11. Look for evidence that the voter’s ink has stained the insides of either hand (or even 
the forearm). See figure 10. While innocent voters might have inadvertently smeared 
some of the silver nitrate from their finger when it was not fully dried, this could be an 
indication of previous attempts to form a fist or otherwise protect the stained finger from 
illumination during voting. In such a case, the voter warrants a more careful examination. 


Figure 10 - Left hand showing staining that appears hours after voting. The middle finger on my right hand 
was Stained with a line, as in figure 1. I then formed a fist to protect that finger, then shielded it from light 
during the simulated time at the polls using the left hand shown here. The ink smeared from my right hand to 
the left. There are small dots on the pointer finger (left) and a larger smudge on the middle finger (middle). 
These stray smudges on either hand—or perhaps even a forearm—can be indicators of attempts to shield a 
stained finger from exposure to light. On the other hand, they can also be totally innocent. 


Problems and Limitations with This Study 


There are a number of serious limitations and problems with this study. I had limited 
time and a limited budget for conducting the work. None of my devised attacks were fully 


48 


Journal of Physical Security 10(1), 30-56 (2017) 


optimized. There was only one test subject—myself. The attacks might work differently on 
other people. For example, people with much darker skin pigmentation might not need to 
do as thorough a job in removing remnants of the silver nitrate stain. 


Other problems with this analysis include the lack of quantification, amateurish 
photography to record experimental results, and no careful monitoring of the illumination 
levels for the fingers as a function of time. (The latter would not be easy measurements to 
make given that the illumination is quite angle dependent). Also, my stained fingers often 
received brief illumination for the purpose of photography to document the work, and this 
represented stain-causing illumination that would be unnecessary in real voter fraud. 


My simulated polling place had approximately 350 lux of illumination, but real polling 
places may be brighter, or even be found outdoors with bright illumination and high uv 
levels from the sun. The maximum amount of time I allowed for simulated voting at this 
350 lux level was 20 minutes, which may or may not be reasonable for the time spent at a 
polling place after receiving the voter’s ink. On the other hand, voters may be able to 
surreptitiously rinse off the silver nitrate with distilled water at the polling place, or even 
do a KI rinse if election officials aren’t watching. This would greatly decrease the amount of 
AgCl available, and the time it would have to form and then decompose via reaction {2}. 


I did much of the experimental work at 18°C+2°C, although skin temperature was always 
typically around 32° C. Presumably, the KI, KBr, and acetone rinses would work better at 
warmer temperatures. I also worked at relatively low humidity. A number of countries 
that use voter’s ink are both hot and humid. This increases drying time and may also 
contaminate the washed finger with NaC] from perspiration. 


Another major problem with this work was that no commercial voter’s ink was used, for 
reasons discussed above. The 15% silver nitrate solution I used, along with the water- 
soluble food coloring dyes, presumably are a good analog to real voter’s ink. My simulated 
voter’s ink, however, did not have the ethanol, biocide, detergent to improve wettability, or 
(probably) the same kind of water-soluble dye as likely used in at least some real election 
inks. Also, I used only a 15% solution of silver nitrate, yet some countries use as little as 
5% and some more than 20%. 15%, however, is a typical concentration. For reasons 
discussed previously, much higher concentrations don’t make a lot of sense. Presumably 
the attacks demonstrated in this work would be even more effective at lower 
concentrations of silver nitrate because there would be less staining, but this was not 
tested. 


Another problem with this study is that I did not measure the uv-absorption of the food 
coloring dye used in my simulated voter’s ink. If the dye blocked uv light to a significant 
degree, it might reduce or slow down the staining process. I saw no evidence for this, 
however. The pure and dyed silver nitrate solutions I used behave quite similarly. 


49 


Journal of Physical Security 10(1), 30-56 (2017) 


Discussion 


The attacks demonstrated here would presumably work for uv-fluorescent inks, or if a 
uv-fluorescent compound were to be added to the silver nitrate ink. I did not test this, 
however. None of the protective coverings in my attacks (KI, egg white, matte topcoat) 
fluoresce significantly under uv light. Thus, a uv light would not reveal their presence. 


All of these attacks were successful at preventing and/or removing silver nitrate stains. 
The simplest Attack #1 is the only largely non-backdoor attack in the sense that there is 
little preparation before the attack, unlike my other attacks. Attack #1 works fairly well, 
but usually requires some touchup with emery board or the nail grinder. This may limit 
how many re-votes can be done with the same finger. 


The advantage to fraudsters of the more complex Attacks #3, #4a, #4b, and #5 is that 
they are more consistently successful. Moreover, they require little or no touch ups, which 
results in quicker turnaround and much less damage to the skin and fingernail than Attack 
#1, thus allowing more re-voting. These attacks are also much more forgiving if the voter 
fails to fully shield the finger from light, or if the voter gets stuck at the polling place 
waiting a long time to vote after finger staining, and/or is delayed in getting the finger into 
rinses and total darkness. 


The attacks demonstrated here—despite the limitations of this study—appear to be so 
successful, inexpensive, and easy to execute that it is unlikely that election officials not 
looking for evidence of the attacks would detect them. Even if election officials look for 
these attacks, and even if they follow all my recommended countermeasures (except 
possibly the first one involving biometrics), it is questionable whether they could reliably 
detect this kind of voting fraud. 


Certainly it is unlikely that these fraudulent methods could be deployed to swing a 
national election, at least in large countries with a high voter turnout. The reason is that 
this would require a large number of conspirators, and it is difficult to keep a conspiracy 
secret when large numbers of voters are involved. On the other hand, the election cheaters 
may only need to keep the secret until the polls are closed. What are election officials going 
to do about the election results after the plot is uncovered? 


Even if the fraudsters can’t easily steal a national election, they may be fully content with 
swinging a local election, or even with getting a candidate or a party to receive just a few 
more percent of votes than they deserve. The extra votes might allow a candidate or 
political party to receive more attention, credibility, and/or future funding than they would 
receive in an honest vote. Another way to look at the issue, however, is that democracy is 
all about fairness and each person getting exactly 1 vote. With that philosophy, even a 
single fraudulent vote is unacceptable. 


It is also important to note that the voter’s ink may not be the only way that election 


officials in some countries can detect duplicate voting.[10, 19] While many countries and 
election jurisdictions seem to use only the voter’s ink to stop duplicate voting, others 


50 


Journal of Physical Security 10(1), 30-56 (2017) 


theoretically use additional security measures. For these countries, however, there may be 
a strong likelihood of a general phenomenon I call the “Gatekeeper Maxim”. (This is a 
major problem in, my experience, with U.S. election security, even without voter’s ink.) The 
Gatekeeper Maxim says that, although multiple security measures may be in place, they are 
often not invoked unless one and only one of the measures (e.g., the voter’s ink) suggests 
there might be a problem.[56] 


In considering the likelihood of these kinds of attacks, it is important to note that there is 
little risk for an individual fraudulent voter. After voting the first time or (illegally) the nth 
time (where n>1), a voter can look at his/her finger to decide if it is prudent to attempt 
another (illegal) vote. Based on the previous vote, the voter will know the level of 
inspection (if any) used by the election officials to detect spoofing. 


As a vulnerability assessor, I have found that one issue inevitably arises when conducting 
a vulnerability assessment: whether it is prudent to publicly discuss vulnerabilities and 
attacks. This can be a complex and debatable matter. I have previously developed a 
Vulnerability Disclosure Index (VDI) as a tool to help think about whether, to whom, and in 
what detail vulnerability information should be shared.[53] The (admittedly subjective) 
VDI score that I obtained [54] by applying the VDI tool to this work was 76.5%. With that 
score, the VDI test would generally recommend that there be full public disclosure of the 
vulnerability and countermeasures information[53], as occurs in this paper. 


Conclusions 


I devised and demonstrated 6 different low-cost methods for spoofing supposedly 
“indelible” voter’s ink based on silver nitrate. These attacks can be repeated a number of 
times per day by each voter. Countermeasures, however, are possible and I suggested 11 of 
them. Nevertheless, silver nitrate staining of voters’ fingers does not appear to be a secure 
method for preventing fraudulent duplicate votes. 


Acknowledgments 


Diana Munson, a Nail Technician with the Renew Salon and Spa in Oswego, Illinois 
contributed ideas, demonstrations, and considerable professional expertise about 
fingernails, and fingernail care, tools, chemistry, and technology. Janie Johnston reviewed 
the paper and offered suggestions. 


51 


Journal of Physical Security 10(1), 30-56 (2017) 


Notes and References 


1. The countries using voter’s ink include Afghanistan, Algeria, The Bahamas, Belize, 
Burkina Faso, Burundi, Cambodia, Canada, Egypt, Ghana, Haiti, India, Iraq, Jamaica, Kenya, 
Lebanon, Libya, Malaysia, the Maldives, Myanmar, Nepal, Nicaragua, Nigeria, Pakistan, 
Papua New Guinea, Peru, Philippines, Saint Kitts and Nevis, Sierra Leone, Solomon Islands, 
South Africa, Sri Lanka, Sudan, Togo, Tunisia, Turkey, Venezuela, and Zimbabwe. 


2. Currency exchange, common percentage, proves it is silver chloride. World of 
Chemicals, “Chemicals of indelible ink used at bank cash counters”, November 16, 2016, 
https://www.worldofchemicals.com/media/chemicals-of-indelible-ink-used-at-bank-cash- 
counters/10719.html 

3. Hindustan Times, “Mysore Paints, the company that supplied ink during elections, asked 
to stock up”, November 15, 2016, http://www.hindustantimes.com/india-news/mysore- 
paints-the-company-that-supplied-ink-during-elections-asked-to-stock-up/story- 
yY1leGEfLwRvgF2L4nJAsSL.html 


4. 4GSim, “7 Ways to Remove Bank Indelible Ink (Exchange Old Note Rs 500/ 1000) Finger 
Nail”, November 16, 2016, 
http://www.4gsim.in/remove-rbi-bank-ink-exchange-rs-500-1000-note/ 


5. Ben Bland, Financial Times, “Indonesia Elections, Financial Times, April 2, 2014, 
http://blogs.ft.com/beyond-brics/2014/04/02/indonesia-elections-nail-holes-group- 
voting-and-other-quirks/ 


6. Solomon Islands Election Commission, “How to Vote”, 
http://www.siec.gov.sb/index.php/voting/how-to-vote 


7. Fox News, “Polls open in divisive vote for Indonesia capital governor”, February 14, 
2017, http://www.foxnews.com/world/2017/02/14/polls-open-in-divisive-vote-for- 
indonesia-capital-governor.html 


8. Fuzhou Obooc Technology, “Indelible Ink Silver Nitrate for Elections”, http://obooc- 
tech.imould.com/product-402059-Indelible+Ink+Silver+Nitrate+for+Elections.htm 


9. Wikipedia, “Election ink”, https://en.wikipedia.org/wiki/Election_ink 


10. Electoral Commission of Jamaica, “Voting Procedures”, 
http://www.eoj.com.jm/content-73-96.htm 


11. Dorian Nunez, ITravelBelize, “How to Get Rid of Your Purple Finger After Voting”, 
March 7, 2016, 
http://itravelbelize.com/how-to-get-rid-of-your-purple-finger-after-elections/ 


52 


Journal of Physical Security 10(1), 30-56 (2017) 


12. The Hindu, “Erase voting ink at your own risk”, May 19, 2016 
http://www.thehindu.com/news/national/erase-voting-ink-at-your-own- 
risk/article5830556.ece 


13. Belize 7, “Surprising Support for Aikman's Referendum”, May 17, 2007, 
http://www.7newsbelize.com/printstory.php?func=print&nid=3382 


14. Matchstick, “Shocking! ‘Indelible’ ink no match for matchsticks”, April 29, 2014 
http://www.mid-day.com/articles/shocking-indelible-ink-no-match-for- 
matchsticks/15259087 


15. Fuzhou Obooc Technology Co., “Indelible Ink Introduction”, 
http://www.indelibleink.com.cn/productintro/407.htm 


16. Daily Bhaskar, “Know what causes voter's ink to persist for months?”, April 5, 2014, 
http://daily.bhaskar.com/news/NAT-TOP-know-what-causes-voters-ink-to-persist-for- 
months-4571353-NOR.html 


17. The Star, July 19, 2013, 
http://www.thestar.com.my/news/nation/2013/07/19/voters-try-dipping-fingers-into- 
ink/ 


18. Borneo Post, “Scrap indelible ink, use fingerprint scanner call”, July 12, 2013, 
http://www.theborneopost.com/2013/07/12/scrap-indelible-ink-use-fingerprint- 


scanner-call / 


19. Ghana Decides, “Ghanaians head to the polls today to elect President, MPs“ 
http://ghanadecides.com/2016/12/ghanaians-head-to-the-polls-today-to-elect-president- 


mps/ 


20. MEC, “Polling procedure in by-elections”, 
http://www.mec.org.mw/files/column%2047-%20polling%20procedure.pdf 


21. Lisa Mueller and Lukas Matthews, “The upcoming Niger election and the drama 
surrounding it, explained”, Washington Post, February 17, 2016, 
https://www.washingtonpost.com/news/monkey-cage/wp/2016/02/17 /drama- 
surrounds-the-niger-presidential-election-this-month-heres-why-citizens-cant-safeguard- 
democracy-on-their-own/?utm_term=.e2f56c8eabcb 


22. ACE, “Election Integrity”, http://aceproject.org/main/english/ei/eix_m026.htm 


23. Salt Lake Metals, “Silver Nitrate Uses”, 
http://www.saltlakemetals.com/Silver_ Nitrate Uses.htm 


24. Borneo Post, “So, how to remove the indelible ink?”, May 11, 2016, 
http://www.theborneopost.com/2016/05/11/so-how-to-remove-the-indelible-ink/ 


53 


Journal of Physical Security 10(1), 30-56 (2017) 


25. Ouch Sony and Ben Pavior, “Voter Ink Can Be Washed Off, NEC Admits”, Cambodia 
Daily, May 11, 2017, https://www.cambodiadaily.com/news/voter-ink-can-be-washed-off- 
nec-admits-129469/ 


26. Avantika Chilkoti, “India elections: when is indelible voter ink not indelible?”, Financial 
Times, May 1, 2014, 
https://www.ft.com/content/7f6a00be-d195-3974-b583-42a4798a8eee 


27. RG Johnston and JS Warner, "What Vulnerability Assessors Know That You Should, 
Too", Asia Pacific Security Magazine 50, 40-42 (2013). 


28. RG Johnston, “Avoiding Shock and Awe”, Journal of Physical Security 9(1), 26-48 (2016). 


29. RG Johnston and JS Warner, “The Doctor Who Conundrum: Why Placing Too Much 
Faith in Technology Leads to Failure”, Security Management 49(9), 112-121 (2005). 


30. Victoria Fontan, Voices from Post-Saddam Iraq, page 141, Greenwood Publishing Group, 
2009. 


31. Guardian, “Taliban 'cut off fingers of two Afghan voters”, The Guardian, August 22, 
2009, 
https://www.theguardian.com/world/2009/aug/22 /afghanistan-election-taliban-fingers 


32. IntelCenter, IntelCenter Terrorism Incident Reference (TIR): Iraq 2000-2005, page 271, 
Tempest Publishing. 


33. BBC News, “In pictures: Kenya election”, March 4, 2013, 
http://www.bbc.co.uk/news/world-africa-21651666 


34. Philip Caufield, New York Daily News, “Islamic terrorists spread bloody campaign 
across continents“, June 16, 2014, 
http://www.nydailynews.com/news/world/islamist-terror-campaign-spans-kenya-iraq- 
afghanistan-article-1.1831354 


35. Sanjay Kumar Mishra, Karoon Agrawal, Shalabh Kumar, and Upendra Sharma 
“Indelible voters’ ink causing partial thickness burn over the fingers”, Indian J Plast Surg. 
47(3), 472-473, 2014. https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4292141/ 


36. Firstpost, “Out damn spot: Is the EC's ink not so indelible?”, April 5, 2014 
http://www.firstpost.com/lok-sabha-election-2014/out-damn-spot-is-the-ecs-ink-not-so- 
indelible-1496541.html 


37. FMT News, “’Fake fingers’ to vote? Not possible, says EC”, March 10, 2017, 
http://www.freemalaysiatoday.com/category/nation/2017/03/10/fake-fingers-to-vote- 
not-possible-says-ec/ 


54 


Journal of Physical Security 10(1), 30-56 (2017) 


38. Miri City Sharing Channel, “Remove Election Ink From Finger After Voting“ 
http://www. miricitysharing.com/remove-election-ink-from-finger-after-voting/ 


39. Voting News, “Malaysia: Amid protests, EC insists indelible ink won’t come off”, May 1, 
2013, 

https://thevotingnews.com/main-malaysia-amid-protests-ec-insists-indelible-ink-wont- 
come-off-tue-apr-30-2013/ 


40. Paul Quinn-Judge, “Ink controversy stains hopes for a clean election in the Philippines”, 
Christian Science Monitor, May 11, 1984 
https://www.csmonitor.com/1984/0511/051134.html] 


41. Colin Clarke, Race, Class, and the Politics of Decolonization: Jamaica Journals, 1961 and 
1968, page 130, Palgrave Macmillan, 2016. 


42. Personal communication with Diana Munson, a professional nail technician. 


43. Free Chemistry Online, “Effect of Light on Some Reactions”, 
http://www.freechemistryonline.com/effect-of-light-on-some-reactions.html 


44. Salt Lake Metals, “Solubility of Silver Compounds in Water”, 
http://www.saltlakemetals.com/Solubility Of Silver Compounds.htm 


45. ScienceLab.com, “Silver Nitrate MSDS”, 
http://www.sciencelab.com/msds.php?msdsId=9927411 


46. ScienceLab.com, “Potassium IodideMSDS ”, 
http://www.sciencelab.com/msds.php?msdsId=9927571 


47. ScienceLab.com, “Potassium Bromide MSDS”, 
http://www.sciencelab.com/msds.php?msdsId=9927400 


48. ScienceLab.com, “Acetone MSDS”, 
http://www.sciencelab.com/msds.php?msdsId=9927062 


49. Clair J. Cheer, “Removal of silver nitrate stains”, Journal of Chemical Education 58 (2), 
201 (1981). 


50. In economics, the “marginal cost” is the cost to produce 1 more unit. 
51. W.C.,, “Nitrate of Silver Stains”, Association Medical Journal 1(49), 1095 (1853). 


52. O.W. Nolen, “Spots and Stains”, The Medical Journal of Nursing 20(12), 962-964 (1920). 


55 


Journal of Physical Security 10(1), 30-56 (2017) 


53. RG Johnston, “A Model for How to Disclose Physical Security Vulnerabilities”, Journal of 
Physical Security, 3(1), 17-35 (2009). 


54. The VDI scores for the Factors A through R for these attacks were 88, 150, 50, 50, 175, 
60, 200, 100, 150, 95, 40, 95, 285, 190, 110, 90, 60, and 155, respectively. See reference 
[53] for a description of these Factors. 


55. “More ‘rigging’ loopholes exposed”, Newsday, August 9, 2013, 
https://www.newsday.co.zw/2013/08/09/more-rigging-loopholes-exposed/ 


56. Some fairly common examples of the Gatekeeper Maxim: not carefully examining a 
cargo seal or checking its unique serial number if the seal seems to be intact (thus ignoring 
most of its security features), or guards who do little unless an alarm sounds. 


56 


Journal of Physical Security 10(1), 57-76 (2017) 


Outsourcing and Models of Security Services 
in Selected Institutions in Ogun State, Nigeria 


Adedayo Adebayo and Adeyinka Aderinto 


Department of Sociology, University of Ibadan, Ibadan, Nigeria 
E-mail: aderinto@yahoo.com 


Abstract 


The transition of security services from the ambit of public service to outsourced 
services, occasioned by 2005 Nigeria’s public service reform policy, created problems in 
terms of its form, content, and context. This study examines the models for security 
services outsourcing in the Federal Tertiary Educational Institutions (FTEIs) in Ogun 
State, Nigeria. We employed the functionalist perspective as a framework. Ogun State 
was purposively selected because of the presence of many tertiary educational 
institutions with varying security outsourcing models. 

Quantitative data were generated through questionnaires administered to 783 
respondents from the Federal University of Agriculture, Abeokuta (FUNAAB); the 
Federal Polytechnic, Ilaro (FPI); and the Federal College of Education, Abeokuta (FCE 
Abeokuta). Qualitative data were generated through 8 Key Informant Interviews and 8 
In-depth Interviews conducted in each of the three FTEIs. 

The quantitative data were analyzed using frequencies and cross-tabulation, 
while the qualitative data were analyzed based on content. Male respondents 
represented 62.7% or respondents. A total of 57% of respondents were single, 78.5% 
were Christian, and 89.1% were Yoruba. 

The FTEIs operated hybrid security models contrary to the policy directive that 
campus security services must be fully outsourced. These models shared common 
features such as: maintenance of synergy between the security personnel and other 
staff of the institutions to enhance capacity building [FUNAAB (77.3%); FPI (74.0%) 
and; FCE, Abeokuta (73.2%)], and operation of shift-system [FUNAAB (70.5%); FPI 
(62.0%) and FCE, Abeokuta (69.5%) ]. 

As a result of this study, we recommend, among other things, that a Strengths, 
Weaknesses, Opportunities and Threats analysis of the outsourcing policy in the FTEIs 
be conducted, and that a uniform regulatory framework and funding be provided by the 
Government to guide the outsourcing of security services. 


Introduction and statement of the problem 


Outsourced services in tertiary educational institutions are many, and vary from 
one institution to another. Within the educational sector, outsourcing essentially refers 


to the concept of transferring the provision of a service from the institution itself to a 


57 


Journal of Physical Security 10(1), 57-76 (2017) 


private company. The Federal Government of Nigeria in 2005, under its monetization 
policy, abolished some established cadres in the public service, among which is the 
security cadre. It subsequently directed all the Federal Tertiary Educational Institutions 
(FTEIs) to outsource the security services on their campuses to private security outfits. 
The FTEIs are the tertiary educational institutions that are directly owned by the Federal 
Government of Nigeria. This transition of security services from public service to private 
no doubt divested the campus security services of any semblance of social service, and 
brought with it the commodification of security services. To effectively manage this new 
development, the managers of the educational institutions have had to seek and put in 
place new and alternate structures for the security management of their campuses. 
Some institutions fully outsourced campus security to private outfits; others employed a 
security model that allows the institution to outsource certain components of the campus 
security to private outfits, while still retaining the services of some of the regular career 


security officers to work alongside private security personnel. 


The models of campus security services in the Nigerian FTEIs vary from one 
institution to another. Within the context of this study, the model of security services 
includes a detailed description of the type and system of security services in the selected 
FTEIs, including the operational details. While some institutions still retained a portion 
of their old security personnel as regular staff with clearly-defined career paths and 
terms and conditions of services, others fully disengaged their regular staff and 
outsourced these critical security services to private security outfits to take charge of the 


campuses on a contractual basis. 


Although there has been appreciable global interest and research on outsourcing 
efforts by tertiary educational institutions (Meenyinikor, Timi-Johnson and Chux- 
Nyeche, 2014), there is still the need to properly document research efforts on 
outsourcing and the models of security services among tertiary institutions, especially 
in Nigeria. In appreciation of this gap, this current study attempts to contextualize the 
issue of outsourcing and the varying features of the models of security services in the 


selected educational institutions in Nigeria, as well as their indigenous peculiarities. 


Literature review 


58 


Journal of Physical Security 10(1), 57-76 (2017) 


It is important to appreciate the differences between the terms “outsourcing” 
and “insourcing”. The primary difference is the method in which work is divided 
between various companies or departments for strategic purposes. Other differences 
between these two business practices include control, costs, location, and resources. 
Insourcing is a business practice performed within an organization's operational 
infrastructure. Outsourcing, on the other hand, enlists the help of outside organizations 
not affiliated with the company to complete specific tasks. As a result, these differences 
affect cost, location, and resource aspects of the organization, which in turn influence 
decision making. The cost associated with insourcing is different from the cost 
associated with outsourcing. Insourcing is typically more expensive for an organization 
as a result of implementing new processes to create a different division of the 


organization (Investopedia, 2015). 


Outsourcing (beyond just the security industry) has a long history. The ancient 
Chinese and Japanese empires adopted outsourcing to the nations they conquered. 
Most past outsourcing was relatively unimportant as it was primarily adopted by small- 
scale industries and in just few specific regions such as the USA and Europe. More 
substantial outsourcing occurred when Scottish workers obtained an outsourced 
contract to make covers for America’s covered wagons using raw materials imported 
from India. Later on in the 1830’s, England’s textile industry became unbeatable to the 
Indian manufacturers because the Indians could not compete with English outsourcing 
(Bacon, 1999). Andrew and Erik (2007) point out that that the word “outsource” first 
occurred in an article in the 1979 Journal of Regal Society of Arts. These days, 
outsourcing has become an integral part of the world economy, thanks to globalization, 
explosive growth of the Internet, and the development of an information infrastructure 


in every region of the world (Akinbola, 2012; Akinbola and Ogunnaike, 2013). 


Outsourcing has become one of the most researched areas in management 
studies due to its rising importance as a management strategy for improving service 
delivery. It is a strategy that is gaining popularity among public institutions as well, 
particularly Nigeria’s universities, as a way of improving economic efficiency in 
providing public services (Ikediashi, Ogunlana, Bowles & Mbamali, 2012). Today, most 


public universities in Nigeria are outsourcing some of the operations that previously 


59 


Journal of Physical Security 10(1), 57-76 (2017) 


were part of the traditional functions that supported academic activities. It is obvious 
that global competitiveness is not limited to the private sector, but is also impacting 
public-owned institutions, and is becoming more pronounced in the universities given 
increasing competition between public and private universities. Due to this competition 
and the need to improve the quality of service delivery in terms of scholarship and other 
ancillary services, the management of most public universities have outsourced some of 
their functions such as security, cleaning, transportation, hostel accommodation, clerical 
functions, canteen services, ICT, etc. In some cases, it is an outright transfer of these 
services to an external service provider, while in other cases, it is a gradual transition 
depending on the level of resistance or acceptability of such policy reform (Ikeije and 


Nwaoma, 2015). 


This transition occurs with the justification by the Federal Government of 
Nigeria that the outsourcing of some cadres during the 2005 public service reform 
exercise was contingent on the need to reduce wages, and ultimately the personnel 
costs incurred by the government for regular employees in the tertiary education 
sectors, especially in areas where it is believed that more efficient and cheaper services 
could be sourced from private service providers. With respect to other municipal 
services outsourced by the tertiary educational institutions, Ikeije and Nwaoma (2015) 
note that the University of Lagos and Michael Okpara University of Agriculture, 
Umudike, Abia State have contracted their cleaning services; the University of Uyo 
contracted out the security services; the University of Ilorin contracted 30% of its 
security and porters’ services; and the University of Lagos contracted part of its security 
and hostel services. A study carried out by Ofoegbu (2013) on the outsourcing of 
services in the Nigerian public service, which analyzed the extent to which government 
objectives have been achieved, reported that there was no significant improvement in 
terms of cost reduction. His findings showed that cost reduction is not the principal 
objective of government outsourcing, rather it is to improve efficiency, effectiveness, 
and service quality. Indeed, service quality is given primary consideration in the award 


of outsourcing contracts. 


In spite of the lofty benefits offered by the policy, there are a number of 
challenges in implementing the reform. Notable among these challenges is the phasing 


out of certain cadres in the public service that are deemed to be redundant under the 


60 


Journal of Physical Security 10(1), 57-76 (2017) 


policy, e.g., drivers, security officers, stewards, etc. The phasing out of these cadres and 
the directive that the services rendered by these categories of staff be subsequently 
outsourced no doubt has a myriad of of social and economic implications that would 
require careful management (Fayomi, 2013). The issue of outsourced staff manning 
strategic duty posts in institutions/agencies poses a great danger to institutional 
administration and development. Government agencies/institutions they serve have 
little or no direct influence over them. The background of such staff might also not be 
adequately known, thereby creating a high propensity for misbehavior and acts of 
disloyalty to the authority. Outsourced personnel, to a reasonable degree in practice 
and thought, have no stake in where they serve. Their proprietors may pay them very 
low salaries, making their commitment to their work place highly suspect (Fehintola, 


2010). 


The most significant advantages of outsourcing are the following: the possibility 
of focusing on core activities, cost savings, access to experienced personnel, improved 
performance, and flexibility. Many researchers agree on the fact that, by handing over 
non-core activities to a trusted third party, a company or organization can concentrate 
on activities central to its mission and increase its competitive position (Baden-Fuller, 


Targette and Hunt, 2000). 


Theoretical Framework 


This study employs a functionalist perspective in investigating the outsourcing 
and models of security services in the selected institutions. The practice of outsourcing 
security services by federal tertiary educational institutions in Nigeria can be explicated 
within the framework of functionalism. This perspective contends that human beings 
naturally have desires that result in chaos unless society limits them. According to the 
structural-functionalist theory, social problems are as a result of the social pathology or 
sickness that exists within society and a result of the breakdown of social norms 
(Onifade, Olaifa, Odozor and Imhonopi, 2015). By analogy and within the threshold of 
the functionalist perspective of security services outsourcing as social problem, it has 
been postulated that sudden and rapid changes in society and its social institutions 


(including educational institutions) are fraught with challenges that could threaten the 


61 


Journal of Physical Security 10(1), 57-76 (2017) 


stability and future of society (Barnshaw, 2014). Although proprietors of tertiary 
institutions usually place high premium on the core services that are presumably 
critical to the establishment and existence of the institution, the non-core services are 
nonetheless intricately connected to the stability and continuous survival of these core 
mandates and services. The structure of tertiary educational institutions is systemic in 
nature such that the efficient performance and quality service delivery of each 


institution are contingent on the effectiveness of the ambient units. 


The core scholarship mandate (viz., teaching, research and community service) 
of the tertiary institutions can only be sustained in a stable atmosphere of peace and 
safety. In line with the functionalists view of social problems as arising from society’s 
natural evolution, the directive of the Nigerian Government to outsource the security 
services of the campuses of the federally-owned tertiary institutions was aimed at 
evolving a new structure that would help plug gaps in resources and capabilities in a 
cost-effective manner. Functionalism emphasizes the importance of social institutions 
for social stability, and implies that far-reaching social change will be socially harmful. 
The position of the federal tertiary educational institutions that operated a hybrid 
security model, as opposed to total outsourcing of the security services, may well be a 
conscious attempt by the concerned institutions to introduce a gradual transition from 


the regular security model to security services outsourcing. 


Methodology 


Research Design 


This research employs a descriptive (non-parametric) design. The principal 
method of data collection is the survey method. Data were collected from a subset of 
the population, and the resulting analyses generalized to the entire population under 
investigation. In addition, in-depth and key informant interviews were used to 


complement the data generated through the survey method. 


The Study Area (Ogun State) 


Ogun State was purposively selected because of the presence of many security 
outsourcing models in its tertiary educational institutions. The State is located in the 


Southwest Zone of Nigeria with a total land area of 16,409.26 square kilometres. The 3 


62 


Journal of Physical Security 10(1), 57-76 (2017) 


federal tertiary educational institutions in Ogun State were also purposefully selected 
for this study, viz. the Federal University of Agriculture, Abeokuta (FUNAAB); the 
Federal Polytechnic, Ilaro (FPI); and the Federal College of Education, Abeokuta. These 
3 institutions had implemented the public service reform policy on the existing security 
cadre, and outsourced the security services on their campuses. The target population of 
this study was the management and stakeholders, staff, students, and outsourced 


security staff of the selected institutions. 


Sampling Procedure and Sample Size 


A multistage sampling method was used. It consisted of purposive, stratified, and 
random sampling techniques. The provisional matrices for finite populations of 


Yamane (1976) was employed by the study and statistically illustrated as follows: 


Ny = N .. where ny = sample size, N = known population, and e = error 
2 
Fame) level or % percent confidence interval or alpha level. For a 0.95 


confidence interval, e = 0.05. 


A combination of the probability and non-probability sampling technique was 
employed in generating the study sample. The probability sampling technique included 
simple random and stratified sampling techniques, while the purposive sampling 
method was also employed as the non-probability sampling technique. A total of 817 
respondents were interviewed across the 3 selected institutions using structured 
questionnaires, in-depth interviews, and key informant interviews. 783 questionnaires 
were administered to the target sample population, namely the staff, outsourced 
security personnel, and students of the selected institutions. 707 copies of the 
questionnaire were completed and returned, giving a response rate of 90.3%. We 


believe the responses provided a fair and valid representation of the target population. 


Table 1 summarizes the research methodology. 


The provisional study population for this research work was derived from the 


preliminary data obtained from the selected institutions. The sample size for the 


outsourced security staff was subsequently determined at the 5% confidence level, 


63 


Journal of Physical Security 10(1), 57-76 (2017) 


Table 1: Research Methodology Index 


S/N 


= 
Study Sample 


ee No. of 
Institutions R acne 

Population a PSE UTIONT OF 
Description FUNAAB Federal Polytechnic, FCE STS Data Collection 

Ilaro Abeokuta 
Management 8 8 8 24 IDI 
Stakeholders 8 8 8 24 KI 
Outsourced ; : 
Security Staff 44 86 83 213 Questionnaire 
Staff 96 88 89 273 Questionnaire 
Students 99 99 99 297 Questionnaire 
TOTAL 255 289 287 831 


while the samples for the staff and students were based on a 10% confidence level. The 


foregoing was premised on the need to successfully conduct the research within the 


available time frame, while giving prime attention to the outsourced security staff and 


the staggered nature of the academic calendars of the selected institutions, e.g., 


The study sample of the outsourced security staff selected from FUNAAB 5% precision 
level was subsequently derived as follows: 


ny 


N 


1+N(e)2 


= 50 


1+ 50(.05)2 


= 44 


The study sample of the students selected from the Federal Polytechnic, Ilaro at the 


10% precision level was similarly derived as follows: 


ny 


N 


1+N(e)2 


= 7830 


1 + 7830(0.1)2 


= 99 


Data collection and analysis 


This study employed a combination of both qualitative and quantitative 


methods. The principal method of data collection employed was the survey method. 


64 


Journal of Physical Security 10(1), 57-76 (2017) 


This notwithstanding, we still adopted an eclectic approach by drawing extensively 
from all relevant fields of knowledge. Extensive use was made of both primary and 
secondary sources of data. The primary data were generated through the use of 
structured questionnaires, key informant interviews, and in-depth interviews where 
necessary. The secondary sources were essentially the use of other ancillary methods 
such as the use of available records and documents. Quantitative data were analyzed 
using frequencies and cross-tabulation, while the qualitative data were analyzed by 


content. 


Validity and Reliability of Measuring Scales 


The instrument for data collection was subjected to face and content validation 
involving experts in sociology and related fields. The reliability test for the research 
method was determined using the test-retest method, which was carried out using 30 
respondents selected from a proximate tertiary institution outside the study location. 
This was conducted at the intervals 2 weeks, and the total scores for each period were 
computed using the Pearson Product Moment Correlation (PPMC) to determine 
reliability. The reliability coefficient of r = 0.708 and above confirms the reliability of 


the method used. 


Findings 


Findings from the 3 selected institutions showed varying degrees of compliance 
with the reform policy on the outsourcing of security services. What was in operation in 
the institutions could at best be described as hybrid security models, as none of the 


institutions complied fully with the outsourcing policy. 


Federal University of Agriculture, Abeokuta 


This University was fully in compliance with the public service reform policy by 
disengaging the services of all their career security staff and retaining only the head of 
the original security department. The university management outsourced the campus 
security to a private outfit (known as Sheriff Deputies). However, with the security 
challenges reportedly experienced by the institution after the implementation, and the 
policy and the needs assessment exercise conducted by the university, the university 


management re-engaged some of the former career security staff on contract basis to 


65 


Journal of Physical Security 10(1), 57-76 (2017) 


complement the security service rendered by the private outfit, and to take charge of 
the critical and sensitive assets of the institution. This hybrid model was corroborated 
by 59.1% of the security personnel. (See table 2). In addition, the titles of the security 
personnel re-engaged by the university were changed to “environmental officers”, while 
the head of the security department was re-purposed as the “Chief Environmental 
Officer”. This situation was summed up by one of the senior environmental officers 
thus: 

There is a contract between the university and the outsourced outfit, 

that is, the Sheriff Deputies and the Assistant Chief Environmental 

officer of the university as the Chief Security Officer is actually in 


charge of the deployment, monitoring, and operations. And | think 
he’s in firm control. 


-- Environmental Officer/FUNAAB/Male/IDI/2016 


The foregoing quote clearly shows that the outsourcing of security services at 
the university was not absolute given the fact that some core and sensitive assets of the 
institution required direct corporate management from the institution. The model of 
security services equally showed the delicate nature of security services and the 
measures employed by the management to ensure that there was a synergy of 
operation between the retained security staff and the new outsourced security 
personnel. Given the sensitive nature of institutional security, the university 
management equally identified the areas of coverage and effectively devolved the 
schedule and operational tasks between the retained security staff and the outsourced 


security outfit. 


Federal Polytechnic, Ilaro 


The Polytechnic similarly disengaged the services of the career security staff and 
retained only the head of security department. The campus security service was 
outsourced to the polytechnic’s consultancy unit. By contract, the consultancy unit 
directly recruited the security employees and re-engaged some of the original career 
security staff of the Polytechnic to provide the service under the new private outfit, 
known as Poly Consult Guards. The location of the institution in the hinterland 
significantly limits the pool and quality of personnel available to be recruited as 
outsourced security personnel; this is the reason for the decision of the polytechnic 


management to re-engage many of the former career security staff as Poly Consult 


66 


Journal of Physical Security 10(1), 57-76 (2017) 


Guards. A total of 52% of the security staff respondents confirmed the existence of the 
foregoing structure. (See Table 2.) Justifying the pattern of recruitment of the 
outsourced security personnel adopted by the polytechnic, a notable member of the 
management explained that, 

The way we operate here might be slightly different from what 

obtains at FUNAAB or FCE; the reason being that the setting of each 

institution differs. FUNAAB and FCE are in a metropolitan area 

where the management of the institutions can source for quality 

hands in outsourcing the security services. The security staff of the 

institutions can easily be disengaged and new set of people brought 

in without any problem. But the same thing is not applicable here. 

We are in arural area. The people you are going to bring in to work 

here would have to be resident here. So it is better to use the ones 


within to solve our pressing need of securing the polytechnic. 
-- Management Member/Male/FPI/IDI/2016 


In addition, the managers who were interviewed confirmed the engagement of 
the Vigilante Group of Nigeria to complement the security services provided by the Poly 
Consult Guards at night, especially for sensitive areas in the Institution. The Vigilante 
Group of Nigeria is a licensed private security service provider. The polytechnic 
management also engages the services of the Nigeria Police Force during university 
examination periods to complement the efforts of the institution’s security outfit 
However, in deference to the subsisting policy restraining the direct involvement of the 
police in the administration of tertiary educational institutions in Nigeria, the police 
team is usually placed on standby at the campus gate so as to deter misconduct among 
the students and to ensure conformity with the rules and regulations guiding 
examination. The chairman of one of the staff unions in the polytechnic confirmed this: 

During examination periods, the school employs the services of 
regular police and uniform vigilante. They work in conjunction 
with the outsourced officers and are strategically placed all over 
the campus. The vigilante group are usually on the campus. The 
regular police stay at the gate, while our outsourced security staff 


work together with the vigilante both at the gate and on the 


campus 
-- Stakeholder (Union Leader) /Female/FPI/IDI/2016 


In a related vein, another stakeholder of the Polytechnic during the Key 
Informant Interview volunteered that the official registration of the Polytechnic Consult 


as a licensed private security service provider by the Nigerian Securities and Civil 


67 


Journal of Physical Security 10(1), 57-76 (2017) 


Defence Corps (NSCDC) was still being processed as the time of this study. It was also 
observed during the course of this study that some of the security personnel of FPI 
patrolled certain sensitive areas of the campus with dane guns. This may possibly be 
due to the volatile nature of the campus terrain, especially the threats posed by 


smugglers and to dissuade recalcitrant student cultists. 


Federal College of Education, Abeokuta 


The Federal College of Education, Abeokuta similarly disengaged the services of 
their career security personnel but retained the head of the security department along 
with a few security officers. The College management thereafter outsourced the campus 
security to private outfits (known as Aso Guards Nigeria Enterprises Limited) and FCE 
Osiele Ventures Limited. The two outfits were contracted to recruit and provide the 
security personnel needed to complement the few career security officers that were 
retained by the College. In addition, the College management also engaged the services 
of the Vigilante Group of Nigeria (VGN) to complement the security services provided by 


the Aso Guards at night, especially for sensitive areas of the Institution. 


The management of FCE Abeokuta employed the services of the Nigeria Police 
Force during the examination periods to complement the efforts of the institution’s 
security. The police team usually stayed at the campus gate in compliance with the 
government policy restraining the direct involvement of the police in the administration 
of tertiary educational institutions in the country. Justifying the model of outsourced 
security services in one of the selected FTEIs, a principal officer of the College noted 


that, 


Though the government wanted complete outsourcing of security 
services, managements of institutions realized that it would expose 
very critical sections of the institutions to the outsourced companies. 
Hence, the management then felt that the few regular security 
officers who would be able to manage these sensitive parts should be 
retained. In addition, the Osiele Ventures Limited was also permitted 
to be in control of certain security personnel as outsourced staff. I’m 
convinced that if the ventures can really develop their capacity, it is 
better that the entire security outfit be contracted to it, as this would 
still make the institution to still have some measure of control over 
the security personnel 

-- Management Member/Male /FCE Abeokuta /IDI/2016 


68 


Journal of Physical Security 10(1), 57-76 (2017) 


The Federal College of Education Abeokuta, through the Aso Guards Nigeria 
Enterprises Limited and FCE Osiele Ventures Limited, recruited its security personnel 
from proximate communities to the institution with minimum qualification of National 
Diploma (ND) as Beats Managers and Auxiliary Supervisors; while those with minimum 
of (ordinary level) school leaving certificates were appointed as guards. In addition, the 
Aso Guards Nigeria Enterprises Limited also recruited mature able-bodied men and 
women with little or no formal education as auxiliary guards. These new recruits were 
trained on basic security operations skills and deployed as fringe operatives in less 
sensitive areas of the College where their capacities could be effectively utilized. The 
foregoing corroborates the positions of Omotosho and Aderinto (2012) that the quality 
of the security personnel is determined by the educational qualifications, means and 
mode of recruitment, and training. A stakeholder from the security outfit outsourced by 
the institution corroborated the mode of recruitment thus: 

We have two modes of recruitment. The senior officers are recruited 
directly from the head office and those ones possess at least the 
National Diploma certificate. But when we are talking of the operatives 
or the guards, their own salary is a little bit different. They have at 
least a school-leaving certificate. When we recruit them, we embark on 
what we called vetting, that is, after collecting the forms, there are two 
guarantors that will stand for each applicant. We will go their houses, 
see the guarantors and ask them series of questions like, ‘are you 
aware that this man wants to work for us? We will crosscheck the 
passport of the man. If it tallies, because some of them will just bring 


the photos even without informing the guarantors 
-- Security Superintendent/Male/FCE Abeokuta/KII/2016 


The nature of the recruitment, among other factors, could significantly account 
for the high turnover rate among this category of staff, as confirmed by one of the 
stakeholders during the Key Informant Interview. A general observatory skills audit 
and personnel evaluation of the outsourced security staff in the three FTEIs via the Key 
Informant Interviews, and the In-Depth Interviews conducted, lend credence to the 
view of Abolurin (2014) that private security companies are often criticised for absent 
or inadequate pre-employment screening, training, standards, certification, regulation, 
and high turnover rate. This was further corroborated by an independent assessment 
of the performance of the outsourced security outfit by a member of the College 


management: 


69 


Journal of Physical Security 10(1), 57-76 (2017) 


The outsourced (security) company is out more for profit than for 
security. I have had series of reasons to interact with them on the need 
to regulate and pay their staff well, but what we discover is that 
because of the company’s desire to maximize profit, it is unable to 
retain its staff who upon exit becomes a security threat to the College. 
Because of the control we have over our College ventures, if we say this 
is what should be paid to the security men, that amount would get to 
the actual people doing the job. That is why I will prefer that if we have 
our way, we concentrate everything with our College venture, but why 
we have been hesitating is that we are aware of the pressure on 
government to consider bringing back the security services into the 
mainstream of institutional administration, especially with the high 
incidence of kidnapping 


-- Management Member/Male/FCE Abeokuta/IDI/2016 


On a comparative note, the management member’s comments seem to advocate 
for the adoption of an ‘insourcing’ model of security services, as in operation at the 
Federal Polytechnic, rather than the ‘outsourcing’ model, which he believed would be 
more beneficial to the institution in terms of the quality of service being rendered by 
the contractor and the locus of control. This view, however, becomes contentious when 
examined against the fact that the operational structures of the consultancy units and 
institutional ventures of the FTEIs were primarily set up for revenue generation and by 
extension, could not be divorced from profit-maximization. Similarly, the view to a 
large extent equally supports the position of Marx and Engels (1962) that profit is the 
main goal of capitalism and the bourgeoisie’s interest lies in maximizing profit. Hence 
the capitalists (as may be represented by the outsourced security outfits) try to keep 
wages as low as possible and spend as little money as possible on working conditions. 
It is therefore commonplace for the outsourced security providers to poorly 


remunerate the recruited staff if not properly monitored. 


Features of Models of Outsourced Security Services at the Selected FTEIs 


For a robust appreciation and vivid description of the models of outsourced 
security in the selected educational Institutions, it is useful to examine the notable 


features of existing models in the institutions: 


(i) Maintenance of synergy with the staff of the institution 
The issue of synergy is fundamental to the occupational harmony required 


among the different categories of security personnel in the institutions operating the 


70 


Journal of Physical Security 10(1), 57-76 (2017) 


hybrid security model. The effective performance and provision of security services in 
the FTEIs is contingent on the understanding and productive synchronization of the 
efforts of parties concerned. To this extent, the findings in table 2 shows the features 
of the models of security services at the 3 FTEIs as identified and prioritized by the 
outsourced security staff. Majority of the respondents from FUNAAB, FPI and FCE, 
Abeokuta (77.3%; 74.0% and 73.2% respectively) were strongly of the view that 
synergy existed among the outsourced security staff and other staff of their respective 
institutions, which further enhanced the capacity building of the security personnel. 
The views were reflective of the integrative and interactive work culture in the 
institutions. This is also supported by the symbolic interactionists perspective and 


significantly helps to foster a stable and safe academic environment in the three FTEIs. 


(ii.) Operation of shift-system 

Preliminary findings from the institution further showed that the security 
personnel in the 3 FTEIs operated a three-shift system, which allowed them to take some 
days off-duty every week to refresh properly before reporting back for duty. From the 
findings reported on table 2, the majority of the respondents from FUNAAB, FPI and FCE, 
Abeokuta (70.5%; 62.0% and 69.5% respectively) were strongly of the view that the 
operation of shift-system by the outsourced and career security personnel was a key 


feature of the model of security services at the three FTEIs. 


(iii.) Contractual Agreement 

Except for FPI that internally outsourced its security personnel from the 
Polytechnic Consult, the other 2 institutions (FUNAAB and FCE, Abeokuta) had 
subsisting annual service agreements with the outsourced security companies that are 
renewable on yearly basis, subject to satisfactory performances. Under the contractual 
agreement, the 2 institutions outsourced some parts of their campuses to the private 
security outfits, but still retained the direct control and security of some critical areas 
that are considered to be critical to the smooth operations of the institutions. Such 
areas are directly manned by the few regular security operatives retained by the 
institutions. This further validates the view of Fehintola (2010) that the issue of 
outsourced staff manning strategic duty posts in institutions/agencies poses a great 
danger to institutional administration and development, as government 


agencies/institutions being worked with have little or no influence over them. 


71 


Journal of Physical Security 10(1), 57-76 (2017) 


(iv.) Designation of Headship of Security Departments 


The three Federal Tertiary Educational Institutions had in place substantive 
Chief Security Officers/Chief Environmental Officers directly appointed by each 
institution to superintend and give appropriate direction to the outsourced security 
manager on behalf of their principals, while similarly giving informed advice and 
periodic report to the management of the institutions. The Chief Security Officers /Chief 
Environmental Officers of the three FTEIs were all ex-servicemen with previous 


working experience in security operations and surveillance matters. 


(v.) | Outsourcing Policy and the thrust of Institutional Autonomy 

There was a strongly-held notion by the some of the institutional managers and 
union leaders interviewed (especially at the university level) that the thrust of the last 
public service reform policy (as it borders on the directive that the federally-owned 
tertiary educational institutions should outsource their security services) seemingly 
contradicted the autonomous status purportedly conferred on these institutions by the 
Acts that established them. This was expressed in unmistakable terms by a principal 


officer of the university during the in-depth interview session: 


Well, I want to say by university autonomy, Federal Government 
is not supposed to be interfering in the day-to-day activities of 
the university because we have the governing council that takes 
policy decision on what it considers necessary. The 
government's policy on outsourcing is a situation whereby the 
federal government, though gives autonomy to the University, 
still indirectly interfere in the affairs of the system. This issue of 
outsourcing emanated from the concept of monetization. In the 
sense that the government wants all things to be monetized and 
along that line they said that some categories of staff should be 
phased out while essential ones should be outsourced as is the 
case of security. Generally in my view, I don’t feel comfortable 
with the idea, but that is the government position and we just 
have to fall in line 

-- Management Member/Male/FUNAAB/IDI/2016 


72 


Table 2: Features of Models of Security Services at the Selected FTEIs as identified by Outsourced Security Staff 


the Outsourced security. 


12 (27.3%) 


14 (31.8%) 


18 (40.9%) 


15 (30.0%) 


24 (48.0%) 


11 (22.0%) 


20 (24.4%) 


36 (43.9%) 


FUNAAB FPI FCE Abeokuta 
S/N Models of Security Services 
A (%) O (%) N (%) A (%) O (%) N (%) A (%) O (%) N (%) 

1. | Maintenance of synergy with other 
staff of the institution to enhance 34 (77.3%) 8 (18.2%) 2 (4.5%) 37 (74.0%) 12 (24.0%) 1 (2.0%) 60 (73.2%) 21 (25.6%) = 1(1.2%) 
capacity building. 

2. | Operation of shift-system by the 
Outsourced and career security 31 (70.5%) 12 (27.3%) 1 (2.3%) 31 (62.0%) 15 (30.0%) 4 (8.0%) 57 (69.5%) | 20 (24.4%) 5 (6.1%) 
personnel. 

Se || Besulan training anc development 31(70.5%) | 12 (27.3%) | 1(2.3%) | 34(68.0%) | 15 (30.0%) 1 (2.0%) | 62 (75.6%) 16 (19.5%) 4 (4.9%) 
from time to time. 

Fe: | SBRUBONalDSHWOTRINE WITD ORE 29 (65.9%) | 13(29.5%) | 2(4.5%) | 28(56.0%) | 19(38.0%) | 3(6.0%) | 54(65.9%) | 25 (30.5%) | 3 (3.7%) 
outsourced security outfits. 

5. | Use of regular (career) security 
officers along with the outsourced 26 (59.1%) 16 (36.4%) 2 (4.5%) 31(62.0%) 15 (30.0%) 4 (8.0%) 62 (75.6%) 16 (19.5%) | 4 (4.9%) 
security officers. 

Be | ee wallebility. OF oneal and eatery 31(70.5%) | 13(29.5%) | 0(0.0%) | 23(46.0%) | 22(44.0%) | 5 (10.0%) | 46(56.1%) | 21 (25.6%) |15 (18.3%) 
measures at workplace. 

7. | Lack of sense of belonging among 


26 (31.7%) 


Source: Field Survey (2016). 


A = Always; 


O = Occasionally; 


N = Never 


Journal of Physical Security 9(2), 57-76 (2016) 


Conclusions 


This study examined the models of security services in the selected institutions 
within the purview of the 2005 public service reform policy of the Federal Government 
of Nigeria. Essentially, we examined the models of security services in the 3 institutions. 
and showed how they varied in the degree of compliance with the Federal Government 
of Nigeria ’s reform policy. Social realities from the findings of this study show that 
there are some non-core constituents that are critical and intricately imperative, if the 
aforementioned core activities of the FTEIs are to be effectively carried out. Of prime 
importance in this regard is the campus security and subsequent outsourcing of the 
security services in the federal tertiary educational institutions in Nigeria. The selected 
FTEIs operated hybrid security models, in contrast to the policy directive that campus 


security services be fully outsourced. 


Recommendations 


Subsequent to the findings of the study, we offer the following recommendations: 


i. The Federal Government of Nigeria should put in place a standard and uniform 
regulatory framework to guide the federal tertiary educational institutions in the 
outsourcing of security services. The framework should be subject to revision so 
as to accommodate the peculiarities and dynamics of each institution. 


ii. |The management of the federal tertiary educational institutions should also put 
in place machinery for the skills auditing and performance appraisal of the 
private security outfits outsourced by the FTEIs. 


iii. In a related vein, the training of security guards by the private security 
companies should be more intensive and the duration should be at least 3 
months in physical and mental training, with all the teaching aids specified by 
NSCDC. There should be constant re-training of the security personnel by the 
outsourced security service provider so as to ensure that they are well informed 
about the latest security practices. 


iv. The services of the private security agencies outsourced by the FTEIs should be 
further complemented with community-based security personnel as an interim 
measure aimed at securing the porous routes of the institutions, and as a way of 
fostering better host- relations. 


74 


Journal of Physical Security 9(2), 57-76 (2016) 


References 


Abolurin, A. 2014. Positioning Private Security Organization in Anti-Terrorism Campaign. 
Paper presented at the First Annual Conference of the Centre for Continuing 
Education and Consultancy (CECECO) held at Federal College of Education, 
Abeokuta from 25th - 30th May. 


Akinbola, 0.A. 2012. Effects of Outsourcing Strategies on the Organizational Performance 
of Fast Food Industry in Lagos State. Research project submitted in partial 
fulfilment of the requirements for the award of Master of Science Degree in 
Business Administration, Covenant University, Ota, Ogun State. 


Akinbola, 0.A. and Ogunnaike, 0.0. 2013. Effects of Outsourcing Strategies on the 
Organizational Performance of Fast Food Industry in Lagos State. BVIMSR’s 
Journal of Management Research, Vol. 5, Issue 2: October. 


Andrew, M. and Erik. B. 2007. Dog Eat Dog - Collaboration with the Wall Street Journal - 
MITSC. A Mit Sloan Management Review. April 27, 2007. Retrieved 3/11/2010 
from http://Sloanreview. Mit. Edu/executive - adviser /articles/2007/2/4925. 


Bacon, C. 1999. Guiding Principles for Managing Outsourcing Relationships. 
AURISA/1999 conference Proceedings. Referred Papers, Dunedin, New Zealand. 
1-7. 


Baden-Fuller, C., Targette, D., and Hunt, B. 2000. Outsourcing: The Competitive to 
Outmaneuver Outsourcing Redefines Competitive Strategy and Structure. 
European Management Journal, 18(1): 156-161. 


Barnshaw, J. 2014. Social Problem Theory, Division Mission Statement, University of 
Delaware. 


Fayomi, I.0. 2013. Monetization Policy in Nigerian Public Service: The Perspective and 
Challenges, International Journal of Educational Research and Development, Vol. 2 
(5): 105-113, May. http://www.academeresearchjournals.org/journal/ijerd. 
Accessed: 11.10.15 


Fehintola, H.A. 2010. The Public Service Reform Agenda and Productivity. ‘The 
Bureaucrat’ Journal of the Registry Department, Federal College of Education 
(Special), Oyo: Vol. 1: 54 - 64. 


Ikediashi, D.I., Ogunlana, S.O., Bowles, G., and Mbamali, I. 2012. Outsourcing of Facilities 
Management Services in Nigeria’s Public Universities. Procs 4th West Africa Built 
Environment Research (WABER) Conference, Eds. Laryea, S., Agyepong, S.A., 
Leiringer, R. and Hughes, W. 24 - 26 July 2012, Abuja, Nigeria: 725 - 735. 


Ikeije, UU and Nwaoma, P.C. 2015. The Outsourcing Policy in the Nigerian Public 
Universities: Issues and Challenges. Epra International Journal of Economic and 
Business Review, February, vol. 3(2): 167-172. www.epratrust.com - Accessed: 
05/04/16 


75 


Journal of Physical Security 9(2), 57-76 (2016) 


Marx, K. and Engels, F. (1962) The Communist Manifesto, In Marx and Engels: Selected 
Works. Moscow, Russia: Foreign Language Publishing House. Vol. 2: 21-65. 


Meenyinikor, J.N.D., Timi-Johnson, T.C., and Chux-Nyeche, G.C. 2014. Managing Nigerian 
Tertiary Educational Institutions: A Panacea for National Security. International 
Journal of Education Learning and Development, Vol. 2, No. 1: 17 - 33. 


Ofoegbu, G.N. 2013. An Investigation into the Performance of Security and Cleaning 
Services Outsourcing in the Nigerian Public Sector: Emphasis on Cost Reduction 
and Service Improvement Objectives. Enugu, Social Science Research Network. 
http://ssm.com/abstract=2320932 Accessed - 11.04.16 


Omotosho, O. and Aderinto, A.A. 2012. Assessing the Performance of Corporate Private 
Security Organisations in Crime Prevention in Lagos State, Nigeria. Journal of 
Physical Security, Vol. 6(1): 73-90. rbsekurity.com/.../JPS%206(1).pdf. Accessed - 
13.04.16 


Onifade, C.A., Olaifa, T., Odozor, U. and Imhonopi, D. 2015. Studies in Arts and Social 
Sciences. Communication and General Studies Department, Federal University of 


Agriculture, Abeokuta, Nigeria: 35-54. 


Yamane, T. 1976. Statistics: An Introductory Analysis, 2nd Edition, New York: Harper and 
Row 


76 


Journal of Physical Security 10(1), 77-81 (2017) 


Viewpoint Paper 
Compliance Versus Security* 
Roger G. Johnston, Ph.D., CPP 


Right Brain Sekurity 
http://rbsekurity.com 


Effective security is not the same thing as complying with security rules and regulations. 
Sure, there is a certain amount of overlap—deliberately violating security requirements 
often results in poor security. But in my experience as a vulnerability assessor, a good rule 
of thumb is that at least a third of security rules and regulations in large organizations 
actually make security worse. Often, this is because the security requirements don’t 
adequately account for local conditions, human nature, organizational culture, or 
unrecognized security vulnerabilities. 


Many security managers fully understand that compliance does not necessarily equate to 
good security (though the political or legal need to be in compliance may be unavoidable). 
Others, however, do not share this view and believe that they can evaluate the effectiveness 
of their security primarily by auditing compliance with rules and regulations. Nothing 
could be further from the truth. 


I’m often asked by security managers who hold the latter view for examples of 
compliance harming security. This article gives just a few of many such examples. I have 
witnessed the majority of these first-hand, often across multiple organizations. I have 
heard about the remaining examples from other security professionals. 


Probably the most common examples of compliance harming security include the 
following: the bureaucracy, paperwork, records keeping, efforts to interpret and 
implement complex rules (sometimes confusing and contradictory), time spent preparing 
for audits, “teaching to the test”, memorizing trivia, spending large sums of money on 
dubious and expensive security measures and consultants, etc. all result in distractions, 
frustrations, loss of focus and energy, and wasting of security resources. Particularly 
damaging can be foolish regulations or legislation imposed by naive bureaucrats, 
regulators, executives, or legislators as a result of over-reacting to security incidents. 


Perhaps the second most common example is where all of the above negative attributes 
of a compliance-based security regime result in security personnel and regular employees 
becoming highly cynical about security. They come to view security as merely stupid rules 
and “Security Theater” imposed on them arbitrarily from above by people who don’t 
understand local conditions or what it takes to get the job done properly. Once this 
happens, a healthy Security Culture and effective security are not possible. 


* This paper was not peer reviewed. A version of it appeared previously in Homeland Security Today 14(1), 
12-13 (2017). 


77 


Journal of Physical Security 10(1), 77-81 (2017) 


Even when cynicism is not engendered by compliance-driven security, emphasis on 
compliance rather than real security can create a bad mindset. Security becomes equated 
with mere bureaucratic busywork, mindless rule following, and the idea that the brass are 
responsible for security, not me. This inhibits proactive situational awareness, the use of 
intuition, and taking of personal initiative and responsibility when it comes to security. 
Poor security results. 


In addition, flawed security rules that needlessly harm employee productivity and 
morale, plus an emphasis on pleasing/conning the security auditors—as so often happens 
in compliance-based organizations—creates an “us-versus-them” atmosphere, “them” 
being auditors and higher-ups. This also leads to bad teamwork and a poor Security 
Culture. 


Indeed, it is poor practice to tell employees that security rules and procedures, which 
they have had zero input in formulating, must be followed or they will be disciplined or 
fired. The message this sends to employees is that higher ups and security are their enemy. 
This is bad for the Security Culture, and thus for security. Generally, security rules that 
haven't passed an employee sanity check are usually bad security rules. Ultimately, all 
security (like all politics) is local. 


Another kind of problem created by compliance are rules that require “Security by 
Obscurity”, i.e., the idea that security is maintained by keeping secrets. In fact, people and 
organizations are very bad at keeping long-term secrets. Somewhat counter-intuitively, 
security is usually better when it is transparent. Transparency allows for review, criticism, 
questioning, accountability, understanding, continuous improvement, and buy-in. It also 
allows for access to the best people and the best information. Moreover, the bad guys, 
whether insiders or outsiders, usually understand the secrets, or at least you have to 
reasonably assume they do. 


Many government organizations require security clearances. The rules usually require 
personnel with such clearances to report any counseling, even something as minor as brief 
marriage counseling. Asa result, employees with security clearances often avoid getting 
any professional help at all with their problems out of fear of placing their security 
clearance at risk, resulting in deteriorating mental health. This may harm security. [It 
should be noted, however, that the role of mental health in the insider threat (other than 
workplace violence) is open for debate. None of the spies arrested for espionage against 
the United States in the last 50 years, for example, were mentally ill. Narcissistic jerks, to 
be sure, but that is not a mental illness. | 


Another common and particularly disturbing example of compliance hurting security is 
when doing only the minimum required by the compliance rules results in not addressing 
critical security risks. Carried to an extreme it means that the minimum specified by the 
compliance rules constrains what is allowed. We won't be allowed to make a significant 
security improvement not actually required by the auditors. For example, federal 
requirements for anti-malware on SCADA control systems (such as used for power utilities) 


78 


Journal of Physical Security 10(1), 77-81 (2017) 


mandate measures that are weaker than many SCADA security managers would like to 
implement but the federal rules prohibit a better security solution. 


I know of many cases where an organization had to decide between a real security 
solution and the minimum standard established by the compliance rules. Guess which one 
usually wins out? A related problem is bureaucrats and executives vetoing necessary 
security measures despite the merits because they are satisfied with merely being in 
compliance. Too often, compliance gives a false sense of security. 


Other, more concrete and less “cultural” examples of compliance harming security 
include: 


¢ An over-emphasis in the rules/regulations on gates, entry points, and fences (which 
typically create only a 4.5 to 15 second access delay) leads to failure to consider other 
attack modes and vulnerabilities, resulting in bad security. 


* Overly rigid rules, such as requirements for predictable guard patrols, routes, 
schedules, and shift changes make it much easier for attackers to avoid or negate the 
guard force. 


* Requiring access by numerous auditors, inspectors, overseers, micro-managers, and 
checkers-of-the-checkers increases the insider threat. 


* Over-classifying information. When everything is classified, nothing is. It is much 
more effective to focus on protecting only the most critical sensitive information, and 
in the most straightforward manner possible. For example, the federal government 
tends to have so many different kinds of classifications and security badges among the 
various agencies that it is difficult to keep them all straight. (The situation has, 
however, improved somewhat in recent years.) 


¢ Mindlessly banning new technology, rather than trying to intelligently accommodate 
it. We saw this kind of “cultural lag” (a term coined by William F. Ogburn in 1922) 
when thumb drives first came out. This makes security the enemy of productivity and 
employees, engenders cynicism about security, and encourages employees to break 
this rule to get things done—making later security rules easier to break. 


¢ Security rules that only the good guys follow, for example, requiring customers to 
remove hats and sunglasses at the bank—a rule that only people not there to rob the 
bank will follow. These kinds of “Security Theater” rules can waste time, attention, 
and energy, and engender cynicism about security. 


¢ [ll-conceived, overly formalistic, unmotivated use protocols for security devices 
(especially tags and seals) that offer poor security and/or discourage inspectors or 
device users from paying close attention to evidence of tampering, and do not permit 
them to invoke their intuition or ask questions. 


79 


Journal of Physical Security 10(1), 77-81 (2017) 


Requiring employees to sign at the bottom of a form, swearing that all the information 
they have previously provided above is true and accurate. This causes them not to go 

back and correct inaccuracies, and to continue on in the future with any lies that have 

written down. Research shows that having the employee pledge at the top of the form 
to tell the full truth results in greater honesty. 


Adherence to a given security standard is often used to argue that an organization has 
overall good security and that no extra security measures are needed when, in fact, 
the standard speaks to only a narrow subset of security issues. The PCI standard 
(Payment Card Industry Data Security Standard) is often used in this way, even 
though it only really addresses security issues for credit card processing, not broader 
security issues. 


Security standards and guidelines written by professional organizations are often 
dominated by input from manufacturers and vendors of security products in a way 
that helps their business but compromises security. The ISO 17712 standard for 
freight seals is, in my view, a classic example of a harmful standard. See, for example, 
RG Johnston and JS Warner, “Vulnerability Assessment Myths”, Journal of Physical 
Security 7(1), 31-38 (2014), http://rbsekurity.com/JPS%20Archives/JPS%207(1).pdf 


Control often gets confused with security, to the detriment of the latter. One form of 
this is when an organization requires employees to only use one kind of computer, 
creating a monoculture that is highly susceptible to viruses and other malware. In the 
2014 Sony attack, for example, hacked Windows PCs were down for a long time, but 
the Macs continued to operate just fine. 


The following paper nicely addresses other problems with cyber security compliance 
(along with some of the advantages): R. Herold, “Do Compliance Requirements Help 
or Hurt Information Security”, http://www.realtimepublishers.com/chapters/1699/esitcv1-13.pdf 


In thinking about compliance versus security, perhaps the following joke is illuminating: 


An old married couple were watching the news on television. The weatherman said a 
snowstorm was coming and that cars should be parked on the odd-numbered side of the 
street to facilitate snow removal. “Guess I better move the car,” said the husband has he 
rose to put on his jacket. 


A few days later, the couple heard on television that another storm was coming and that 
this time, cars were supposed to be parked on the even-numbered side of the street. The 
old man got up to move the car. 


Two weeks later, the couple was again watching the weather report on television. The 
weatherman was saying, “another huge blizzard is now bearing down on the city and cars 
must be parked on the....”, when suddenly the power failed and the television went blank. 


80 


Journal of Physical Security 10(1), 77-81 (2017) 


The old man turned to his wife and said, “Now what should we do”? His wife said, “Well, 
dear, maybe you should just leave the car in the garage tonight.” 


81 


Journal of Physical Security 10(1), 82-85 (2017) 


Viewpoint Paper 
Some Unconventional Security Metrics* 
Roger G. Johnston, Ph.D., CPP 


Right Brain Sekurity 
http://rbsekurity.com 


The traditional measure of security effectiveness—has anything really bad happened 
recently?—is not a very effective metric. It fails in at least 3 ways: It ignores changes in 
assets, resources, technologies, threats, and vulnerabilities. It does not encourage a 
proactive approach to security. It fails to prepare us for rare catastrophic incidents. This 
article discusses some unconventional metrics for security that might be worth 
considering, especially for complex security programs. 


Any good security metric should have certain key attributes. It should measure actual 
security, not just security management. The important things should get measured, not 
just the things easy to measure. Quality, not just quantity needs to be emphasized. A good 
metric should also recognize that compliance and security are not the same thing. And all 
metrics should avoid driving undesirable employee behaviors and attitudes. 


Some metrics worth considering: 


¢ Degree of transparency. Somewhat counter-intuitively, security is usually better 
when it is transparent because this allows for review, criticism, questions, 
improvements, and buy-in. “Security by Obscurity” is not a viable security strategy. 
People and organizations cannot keep long-term secrets, and you usually have to 
assume the adversaries (insiders or outsiders) understand your security. 


¢ Amount of thoughtful pushback on auditors and high-level security rules to allow 
for local conditions. The key test for local security practice ought to be whether it is 
good security, not whether it follows the one-size-fits-all rules mandated by high- 
level bureaucrats with no understanding of the local environment. Pushback 
suggests there has been some local critical thinking about security. 


¢ Frequency of sanity checks on security rules by talking with employees affected 
by them. 


* Disgruntlement mitigation. Percentage of the time when managers and HR are 
aware of allegations of an unfair or hostile work environment (bully bosses, 
coercion, sexual or racial harassment, etc.) that they take positive actions, and do 
not retaliate against the alleged victims. While disgruntlement is only one of many 
motivators for inside attacks, it is one of the easiest to counter. A related metric is 


* This paper was not peer reviewed. A version of it appeared previously in Asia Pacific Security Magazine 
online. 


82 


Journal of Physical Security 10(1), 82-85 (2017) 


the number of times that the organization’s grievance and employee assistance 
programs are used. They will only be used frequently if employees view them as 
safe, effective, and legitimate. Perception is everything. 


Employee turnover rates for both security and non-security personnel. This is 
closely related to the insider threat. 


Frequency of formal and informal communications between security personnel 
(including low-level personnel) and non-security employees and contractors. 
Security by “walking around” is an effective strategy. 


Resiliency preparation. Prevention is difficult. A good security program needs to 
be ready in advance to lead recovery after a serious security incident, including 
tampering, hacking, and counterfeiting. 


Amount of “What Ifs?” How often do employees and security personnel mentally 
or physically rehearse possible security incidents, and how often are novel incidents 
considered? Even wildly implausible scenarios get people thinking creatively about 
security! 


Frequency of formal and informal vulnerability assessments, number of 
ongoing vulnerabilities and potential countermeasures identified, and number of 
suggestions for security improvements, including from low-level personnel and 
non-security employees. (It is important to realize that vulnerability assessments 
are not the same thing as threat assessments, security surveys, performance testing, 
“Red Teaming”, pen(etration) testing, or compliance auditing—though these things 
are worth doing and can shed some light on vulnerabilities.) 


Number of security changes recently introduced. This leads us to the idea of 
“Marginal Analysis”. (In mathematics and economics, “marginal” means rate of 
change.) 


Now securing even a medium-sized enterprise or facility is a very complex minimization 
problem. Risk needs to be minimized while considering hundreds of different security 
parameters (variables) involving security personnel, technologies, spatial and temporal 
deployment of resources, possible security strategies, assets to be protected, threats, 
vulnerabilities, training, etc. This is very much like a classic minimization problem in N- 
dimensional space, where N is quite large. 


Figure 1 shows a 3-dimensional schematic of risk plotted as a function of only 2 security 
parameters (so N=3). The risk surface has peaks and valleys. In theory, the goal is to find 
the values for the two security parameters that corresponds to the lowest valley in the risk 
surface; this is the point of minimum risk. 


83 


Journal of Physical Security 10(1), 82-85 (2017) 


The idea with Marginal Analysis is to introduce changes—real or theoretical—in your 
security program, and then determine if the risk is lowered as a result. If it is, try 
additional similar changes to see if you can get the risk even lower. If the risk instead 
increases, try changes in approximately the opposite direction. The goal is to travel down 
the red line shown in figure 1 by adjusting parameters in an attempt to find the minimum 
in the risk surface, and more importantly, the values of the various parameters that gives 
this minimum risk. 


Figure 1 - Risk as a function of two security parameters. Traveling “down hill” to a valley 
(minimum) in the risk surface allows us to find the optimum settings for the 2 parameters. 


We can conclude that we have “pretty good security” if no changes significantly lower the 
risk. This may be more practical than an absolute determination of security effectiveness. 


Somewhat counter-intuitively, the changes in your security should involve variations in 
more than just 1 parameter at a time. The changes will usually be minor. Every once ina 
while, however, it is important to consider large changes. This is because you may 
currently be in a local valley in the risk surface. There might be a lower valley over the next 
hill or mountain, and a large change could allow you to locate this lower risk. (Itis, 
however, important not to let the best be the enemy of the good. Often a good security 
solution is acceptable rather than demanding the absolute best, i.e., the absolute lowest 
valley.) 


Now the risk surface in figure 1 is constantly morphing and fluctuating over time with 
changes in threats, assets, personnel, technologies, etc. So this process of introducing 
changes to see if the risk gets lowered is ongoing and not a one-time activity. It is also 
important to recognize that the mathematical N-dimensional minimization problem is only 
an analogy. The process is not really mathematical. We do not yet understand enough 
about security to do this complete process mathematically in any realistic way. Perhaps 
someday we will. 


84 


Journal of Physical Security 10(1), 82-85 (2017) 


So how do you know if a given set of changes improves or degrades your security, i.e., 
lowers or raises the risk (and takes you “downhill” in N-dimensional space)? There are 
several possible answers: 


Possible Answer 1: It doesn’t matter. The main goal of Marginal Analysis is to 
encourage change, flexibility, and critical thinking about your security. Whether the change 
is actually implemented or merely contemplated, a subjective estimate of whether there is 
security improvement or not may be adequate. Often, it is easier to judge incremental 
improvement in security than absolute effectiveness. 


Possible Answer 2: For a more nuanced approach, the changes can be implemented for 
real, then the security system studied for evidence of improvement or degradation. 


Possible Answer 3: Perhaps the best approach is to let vulnerability assessors, threat 
assessors, and risk analysts help you determine whether the change (implemented or 
contemplated) actually improves your security. 


The ultimate question worth considering with Marginal Analysis is the following: Can 
continually focusing on changes help us be flexible, adaptable, and proactive about security, 
rather than being stuck with inertia, reactive approaches, wishful thinking, and 
groupthink? Give it a try! 


85 


Journal of Physical Security 10(1), 86-90 (2017) 


Viewpoint Paper 
Common Reasoning Errors in Security* 
Roger G. Johnston, Ph.D., CPP 


Right Brain Sekurity 
http://rbsekurity.com 


There are a number of classic fallacies in reasoning and in debating issues that can 
negatively impact security. Avoiding these logical errors can help with clarity of thought as 
well as increase our objectivity. 


Some of these fallacies include: 


Argument from Consequences Fallacy: This is where bad consequences of a certain 
course of action are assumed. The consequences may be likely or not, but in any case, they 
do not speak directly to the merits of the proposed action. Often used in politics. 


Common examples in security: (1) It would be very bad if we had security vulnerabilities 
so therefore we do not. (2) Critics of election security reform use this kind of false 
argument, claiming that any discussion of election security vulnerabilities undermines faith 
in democracy. (3) Control often gets confused with Security. 


Appeal to Fear Fallacy: This is warning of a bad consequence for which there is 
insufficient evidence. 


Common example in security: Security sales pitches. 


Slippery Slope Fallacy: Discrediting an idea by arguing that its acceptance will lead toa 
series of events that are undesirable. This fallacy typically assumes that the envisioned 
events are inevitable, even though no evidence is offered. It is related to the Appeal to Fear 
Fallacy. 


Common example in security: Ironically, this fallacy is often used by people on both sides 


of the argument about the alleged need for greater national security versus the potential 
negative impact on privacy, civil liberties, and adherence to the Bill of Rights. 


Straw Man Fallacy: This involves misrepresenting an idea as something more ludicrous 
than the actual idea. Often used in politics. 


* This paper was not peer reviewed. A version of it appeared previously in Asia Pacific Security Magazine 
online. 


86 


Journal of Physical Security 10(1), 86-90 (2017) 


Common example in security: Frequently used to argue against a potential new 
countermeasure or change in security. 


Appeal to Irrelevant Authority Fallacy: The views of those who are not credible 
experts on the subject are cited as strong evidence. 


Common examples in security: (1) The sales guy says this security product is really good. 
(2) This security product or strategy is used alot by___ so therefore we need to use it, 
too. (3) This security product is high-tech so it must be good. (4) The engineers can’t 
figure out how to defeat this security device so it must be good. (In fact, however, 
engineers typically have the wrong mindset and experience to perform effective 
vulnerability assessments.) 


Equivocation Fallacy: This involves changing the meaning of a word. The new meaning 
is then used to reason or argue a wrong conclusion. This type of argument is used by 
lawyers all the time. 


Common examples in security: (1) Vulnerabilities often get confused with threats, assets 
needing protection, and facility features. (2) Vulnerability assessments are often confused 
with threat assessments, security surveys, compliance auditing, performance testing, 
pen(etration) testing, and “Red Teaming”. (3) Measurements of inventory are often 
confused with security measures, even when they make no significant effort to counter 
spoofing. (4) Calling a security product “high security” when that is the intended 
application for the product, not an attribute of the product. 


False Dilemma (Black & White or False Dichotomy) Fallacy: Only 2 possibilities are 
presented with no others allowed, including shades of gray. 


Common examples in security: (1) Security is often thought of as binary—we are secure or 
we are not. In reality, security is a continuum. The idea of “gap analysis” unfortunately 
plays to this binary mindset. (2) We hired a convicted criminal, gave him a crowbar, and he 
couldn’t defeat the security device. Therefore, the device is undefeatable. 


Not a Cause for a Cause Fallacy: Assuming a cause for an event when there is no 
evidence for such a thing. There are actually 2 kinds: correlation getting confused with 
causation, and post hoc, ergo propter hoc, which is an event preceding another event that is 
incorrectly thought to be the cause of that second event. 


Common examples in security: (1) There were no serious security incidents recently so 
that must mean our security is working. (2) Scapegoating after security incidents. 


87 


Journal of Physical Security 10(1), 86-90 (2017) 


Hasty Generalization Fallacy: Conclusions are drawn from too small or specialized a 
sample. 


Common examples in security: (1) We can’t immediately identify any obvious 
vulnerabilities. Therefore there are none and our security is excellent. (2) We dida Red 
Team exercise “testing” one specific attack so we therefore fully understand our security 
vulnerabilities. 


Appeal to Ignorance Fallacy: A proposition is claimed to be true because there is no 
evidence it is false. Absence of evidence is incorrectly taken to be evidence of absence. A 
special version of this fallacy is Argument From Personal Incredulity—I can’t see how this 
proposition can be true so this means it is false. 


Common examples in security: (1) I’ve seen no evidence that this security device or 
program can be defeated; therefore it cannot be. (2) I (a non-expert) can’t envision how to 
defeat this security (especially since I don’t want to) so therefore nobody can. 


Circular Reasoning Fallacy: A kind of begging the question where we assume the 
conclusion is one of the premises. Often the conclusion is reworded to disguise it. “You are 
wrong because you are not making any sense” is an example. 


Common example in security: We’ve had no tampering because no tampered seals were 
discovered. (The flaw in the argument, however, is that—by definition—defeated seals are 
not detected.) 


No True Scotsman Fallacy: After a general claim about a group of things, a counter 
example is found. Then, that thing is declared not part of the group or not a “true” member. 
This fallacy is related to the Circular Reasoning Fallacy. (The name of the fallacy comes 
from the idea that no “true” Scotsman would ever say or do a certain thing, so that if a given 
gentleman does, he cannot therefore be a true Scotsman even if he is a Scotsman.) 


Common example in security: That attack was demonstrated on Thursday but today is 
Tuesday. Therefore, the attack isn’t viable today. 

Genetic (Questioning Motives) Fallacy: An idea or proposition is devalued or defended 
solely based on its source or origins. 
Common examples in security: (1) The motives and loyalty of vulnerability assessors or 


stakeholders who ask questions about security are questioned as a way of rejecting their 
concerns. (2) The higher ups made this security rule so it must be a good idea. 


88 


Journal of Physical Security 10(1), 86-90 (2017) 


Guilt by Association Fallacy: Discrediting an idea solely because it is held by a 
demonized group. This is a kind of non sequitur. It falsely assumes that accepting the idea 
would make one automatically part of the demonized group. 


Common example in security: They use these tactics in Russia, China, or Iran, so therefore 
we should not. 


Affirming the Consequent (Converse) Fallacy: We know that “if A, then C” is true. We 
know that C is true. Therefore, A is true. This is false reasoning. 


Common examples in security: (1) If we treat our employees well, they will be less likely to 
engage in insider attacks. We haven't detected any insider attacks. Therefore, we are 
treating our employees well. (2) If we have no adversaries, we won't be attacked. We 
haven't been attacked recently. Therefore, we have no adversaries. 


Appeal to Hypocrisy (Tu Quoque = “You Too”) Fallacy: Claiming that an advocate for a 
given idea or proposition has shown past inconsistency in thought, argument, or deed. This 
diverts attention from the truth or falsehood of the idea or proposition in question. Often 
used in politics. 


Common example in security: This security manager was once a strong proponent of using 


contract guards but now uses proprietary guards, so her views on security awareness 
training are highly suspect. 


Appeal to the Bandwagon (Appeal to the People) Fallacy: If alot of people believe in 
something, it must be true. 
Common examples in security: (1) Nobody else seems to be worried about these kinds of 


attacks, so we shouldn’t be either. (2) The government and the police uses polygraphs a lot 
so they must be valid. 


Ad Hominem (“To the Man”) Argument Fallacy: Attack the proponent of an idea 
(including his qualifications and assumed motivation), rather than the idea itself. 
Common example in security: This argument is often used to discredit vulnerability 
assessors, security critics, and those proposing unconventional security strategies. 

Composition Fallacy: Because part of a whole has an attribute, the whole must, too. 


Common examples in security: (1) We encrypt or digitally authenticate the data so that 
rules out theft or tampering. (2) Because we use good locks, we must have good security 


89 


Journal of Physical Security 10(1), 86-90 (2017) 


overall. (3) The security device uses a lock, a seal, a mechanical tamper switch, or “tamper 
proof” screws, therefore it cannot be tampered with. 


Division Fallacy: One part of a whole must have a certain attribute because the whole 
does. 


Common examples in security: (1) Our security has held up well. Therefore, all parts are 
fully optimized. (2) We use layered security (“defense in depth”). Therefore, the 
effectiveness of any given layer isn’t of concern. 


Cognitive Dissonance Fallacy: Our reasoning is negatively impacted by the mental 
tension generated by ideas or facts we do not wish to be true or to contemplate. Cognitive 
dissonance is probably the main cause of bad security across a wide range of security 
applications. This can lead to Security Theater; wishful thinking; denial and wishful 
ignorance (deliberately avoiding facing the facts); stagnation/paralysis (not addressing 
problems); self justification (self-serving rationalization and excuse making); 
confirmation bias and motivated reasoning (incorrectly interpreting data in ways that 
make us feel good); and invoking any number of the above fallacies. 


Common examples in security: (1) We have no serious vulnerabilities. (2) Our employees 
are too loyal to attack. (3) HR says we have an effective employee complaint/grievance 
process. 


Fallacy of Precision: The belief that assigning a numeric value to something means we 
have a full understanding of it, or that semi-arbitrarily assigned numbers impart rigor. 


Common examples in security: (1) Believing uncritically in risk probabilities that are often 
only semi-educated guesses, old news about the past, or just wishful thinking. (2) Hiring 
one candidate over another because he/she has a slightly higher GPA three digits right of 
the decimal even though the candidates attended different schools, studied different 
subjects, took courses with varying degrees of difficulty, and had completely different 
teachers/professors. 


The more you can recognize and avoid these reasoning and argument errors, the better 
your security is likely to be! 


90 


